Hongming Wang 488fde03a7 fix(middleware): TenantGuard passes through /cp/* to CP proxy ... Today's rollout of cp_proxy (PR #1095/1096) mounted /cp/* as a reverse-proxy to the control plane, but the TenantGuard middleware runs first in the global chain and 404s anything that isn't in its exact-path allowlist (/health + /metrics). Every /cp/auth/me fetch from canvas landed on a 40µs 404 before ever reaching the proxy. /cp/* is handled upstream (WorkOS session + admin bearer), so the tenant doesn't need to attach org identity for those paths. Passing them through is correct — matches the design where the tenant platform is a pure transit layer for /cp/*. Verified: /cp/auth/me via tunnel now returns 401 (correct unauth from CP) instead of 404 from TenantGuard. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>		2026-04-20 13:14:56 -07:00
..
artifacts
bundle	fix(bundle/exporter): add rows.Err() after child workspace enumeration	2026-04-19 21:46:36 +00:00
channels	fix(security): cap webhook + config PATCH bodies (H3/H4)	2026-04-19 01:23:03 -07:00
crypto
db
envx
events
handlers	fix: add ?purge=true hard-delete to DELETE /workspaces/:id (#1087)	2026-04-20 11:08:44 -07:00
metrics
middleware	fix(middleware): TenantGuard passes through /cp/* to CP proxy	2026-04-20 13:14:56 -07:00
models	feat: seed initial memories from org template and create payload (#1050)	2026-04-20 00:35:49 -07:00
plugins
provisioner	fix(cp_provisioner): cap IsRunning body read at 64 KiB	2026-04-20 09:06:20 -07:00
registry
router	feat(router): /cp/* reverse-proxy to CP + same-origin canvas fetches	2026-04-20 13:01:40 -07:00
scheduler	Merge pull request #1007 from Molecule-AI/fix/scheduler-defer-busy-969	2026-04-19 20:21:16 -07:00
supervised
ws
wsauth