Release v1.7.15: security hardening, async auth, CSP tightening, model validation, SSRF guard, rate limiting improvements, frontend extraction, Docker compose security

2026-05-28 14:57:09 +02:00
parent fe95dfcfce
commit f7fca05210
18 changed files with 943 additions and 873 deletions
@@ -1,3 +1,4 @@
+import asyncio
 from unittest.mock import patch

 import auth
@@ -28,19 +29,19 @@ def test_allowed_by_group():

@patch("auth.AUTH_ENABLED", False)
 def test_require_auth_disabled():
-    claims = require_auth(None)
+    claims = asyncio.run(require_auth(None))
    assert claims["sub"] == "anonymous"


@patch("auth.AUTH_ENABLED", True)
 def test_require_auth_missing_header():
    with pytest.raises(HTTPException) as exc_info:
-        require_auth(None)
+        asyncio.run(require_auth(None))
    assert exc_info.value.status_code == 401


@patch("auth.AUTH_ENABLED", True)
 def test_require_auth_invalid_bearer():
    with pytest.raises(HTTPException) as exc_info:
-        require_auth("Basic abc")
+        asyncio.run(require_auth("Basic abc"))
    assert exc_info.value.status_code == 401