upaas/007_drop_api_tokens.sql at 9ac1d2578812240f92af2e43ab3413dd6a37eb32 - upaas - git.eeqj.de

sneak/upaas

user 9ac1d25788 refactor: switch API from token auth to cookie-based session auth

- Remove API token system entirely (model, migration, middleware)
- Add migration 007 to drop api_tokens table
- Add POST /api/v1/login endpoint for JSON credential auth
- API routes now use session cookies (same as web UI)
- Remove /api/v1/tokens endpoint
- HandleAPIWhoAmI uses session auth instead of token context
- APISessionAuth middleware returns JSON 401 instead of redirect
- Update all API tests to use cookie-based authentication

Addresses review comment on PR #74.

2026-02-16 00:31:10 -08:00

2 lines

33 B

SQL

Raw Blame History

DROP TABLE IF EXISTS api_tokens;