molecule-core

History

molecule-ai[bot] 059644bc37 fix(wsauth): add removed-workspace JOIN to ValidateToken (#697 ) Defense-in-depth: workspace-scoped ValidateToken now rejects tokens belonging to workspaces with status='removed' at the DB layer, even when revoked_at IS NULL. Mirrors the same guard added to ValidateAnyToken in #696. Updated all test mock patterns (workspace_test, a2a_proxy_test, secrets_test, admin_test_token_test, middleware) to match the new JOIN query. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-17 12:46:27 +00:00
..
tokens_test.go	fix(wsauth): add removed-workspace JOIN to ValidateToken (#697 )	2026-04-17 12:46:27 +00:00
tokens.go	fix(wsauth): add removed-workspace JOIN to ValidateToken (#697 )	2026-04-17 12:46:27 +00:00

molecule-ai[bot] 059644bc37

fix(wsauth): add removed-workspace JOIN to ValidateToken (#697 )

Defense-in-depth: workspace-scoped ValidateToken now rejects tokens
belonging to workspaces with status='removed' at the DB layer, even
when revoked_at IS NULL. Mirrors the same guard added to ValidateAnyToken
in #696. Updated all test mock patterns (workspace_test, a2a_proxy_test,
secrets_test, admin_test_token_test, middleware) to match the new JOIN query.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-04-17 12:46:27 +00:00

tokens_test.go

fix(wsauth): add removed-workspace JOIN to ValidateToken (#697 )

2026-04-17 12:46:27 +00:00

tokens.go

fix(wsauth): add removed-workspace JOIN to ValidateToken (#697 )

2026-04-17 12:46:27 +00:00