Owlibou/owlibou-ttrpg
2
0
Fork 0
Code Issues 51 Pull Requests Actions Packages Projects 5 Releases Wiki Activity

Implement note access control #24

New Issue
Open
opened 2025-12-16 15:55:56 +01:00 by vikingowl · 0 comments
vikingowl commented 2025-12-16 15:55:56 +01:00
Owner
Copy Link

Enforce visibility rules for notes.

Rules

  • Private notes: only author can view
  • Shared notes: author + selected users
  • Public notes: all campaign members
  • GM can see all player notes
  • Players can only see own + shared notes

Tasks

  • Create note_shares table for selective sharing
  • Add authorization middleware
  • Filter notes by visibility in queries
Enforce visibility rules for notes. ## Rules - [ ] Private notes: only author can view - [ ] Shared notes: author + selected users - [ ] Public notes: all campaign members - [ ] GM can see all player notes - [ ] Players can only see own + shared notes ## Tasks - [ ] Create note_shares table for selective sharing - [ ] Add authorization middleware - [ ] Filter notes by visibility in queries
vikingowl added this to the M3: Session Notes Alpha milestone 2025-12-16 15:55:56 +01:00
vikingowl added the apiauth labels 2025-12-16 15:55:56 +01:00
vikingowl added this to the Phase 2: Session Notes project 2025-12-16 16:06:39 +01:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
api
Backend/API tasks
 auth
Authentication/Authorization
 Compat/Breaking
Breaking change that won't be backward compatible
 database
Database/Schema tasks
 frontend
Frontend/UI tasks
 infra
Infrastructure/DevOps tasks
 Kind/Bug
Something is not working
 Kind/Documentation
Documentation changes
 Kind/Enhancement
Improve existing functionality
 Kind/Feature
New functionality
 Kind/Security
This is security issue
 Kind/Testing
Issue or pull request related to testing
Priority
Critical
1
The priority is critical
Priority
High
2
The priority is high
Priority
Low
4
The priority is low
Priority
Medium
3
The priority is medium
realtime
WebSocket/Real-time features
Reviewed
Confirmed
1
Issue has been confirmed
Reviewed
Duplicate
2
This issue or pull request already exists
Reviewed
Invalid
3
Invalid issue
Reviewed
Won't Fix
3
This issue won't be fixed
Status
Abandoned
3
Somebody has started to work on this but abandoned work
Status
Blocked
1
Something is blocking this issue or pull request
Status
Need More Info
2
Feedback is required to reproduce issue or to continue work
No Label api auth
Milestone
No items
No Milestone M3: Session Notes Alpha
Projects
Clear projects
No project Phase 2: Session Notes
Assignees
Clear assignees
mpuchstein vikingowl
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: Owlibou/owlibou-ttrpg#24
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?