mirror of
https://github.com/coollabsio/coolify.git
synced 2026-03-11 08:55:47 +00:00
Restrict sensitive operations to admins/owners and hide sensitive data from team members: - Add authorization checks to Livewire components and API endpoints - Restrict team members from accessing sensitive permissions and data - Hide environment variable values from non-admin team members - Update policies to enforce team-level admin status requirement - Add useSensitivePermissions policy for read:sensitive tokens - Improve disabled button UX with auth-specific tooltips - Add authorization checks in middleware for API tokens Closes authorization gaps in project management, server management, and settings components. |
||
|---|---|---|
| .. | ||
| ApiAuthorizationTest.php | ||
| ApiTokenPermissionTest.php | ||
| ApplicationConfigAuthorizationTest.php | ||
| CloudProviderAuthorizationTest.php | ||
| DashboardAuthorizationTest.php | ||
| DatabaseConfigAuthorizationTest.php | ||
| DestinationOwnershipTest.php | ||
| EnvironmentVariableValueHidingTest.php | ||
| LegacyMemberTokenTest.php | ||
| NavbarDeleteTeamAuthorizationTest.php | ||
| NotificationAuthorizationTest.php | ||
| ProjectEnvironmentAuthorizationTest.php | ||
| ResourceHeadingAuthorizationTest.php | ||
| ResourceOperationsCrossTenantTest.php | ||
| SecurityPageAuthorizationTest.php | ||
| ServerAuthorizationTest.php | ||
| ServiceConfigAuthorizationTest.php | ||
| SharedResourceAuthorizationTest.php | ||
| TeamAuthorizationTest.php | ||