Authorize logical root API paths against vault storage

This commit is contained in:
Joe Julian
2026-04-13 07:15:16 -07:00
parent 59cd01f8e7
commit 9882d3fc04
3 changed files with 46 additions and 12 deletions
-3
View File
@@ -8,9 +8,6 @@ The product is not complete until the global exit criteria at the end of this fi
## Priority Bugs
- Vault root view bug:
update gRPC/API-facing datastore reads and writes to use logical `VaultRoot`
paths while keeping authorization on canonical `Vault` paths.
- Vault root view bug:
add API-token path translation helpers so token editing, approval prompts, and
audit/resource display stop leaking the physical `keepass` root.