viktor/infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
infra/stacks/trading-bot
History
Viktor Barzin fde2d19bf7 trading-bot: ingress auth required->app (app has own WebAuthn/JWT) 
The app ships complete auth — WebAuthn/passkey (RP_ID=trading.viktorbarzin.me)
+ JWT bearer on every /api/* route + a /ws?token=<JWT> WebSocket. Authentik
forward-auth on / was 302-bouncing the WebAuthn XHR flow and the WS upgrade,
making the app unusable. Flip to auth = "app" so the backend's own auth is the
gate (same-origin SPA + bearer-token API, same pattern as immich). Verified all
11 route modules enforce Depends(get_current_user) and dev_mode defaults False
before flipping.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
2026-06-03 10:24:24 +00:00
..
backend.tf kms: revert files accidentally bundled into the docs commit 2026-06-01 10:36:49 +00:00
main.tf trading-bot: ingress auth required->app (app has own WebAuthn/JWT) 2026-06-03 10:24:24 +00:00
providers.tf Woodpecker CI deploy [CI SKIP] 2026-05-26 21:09:48 +00:00
secrets [ci skip] add trading-bot Terraform stack 2026-02-23 22:29:59 +00:00
terragrunt.hcl migrate consuming stacks to ESO + remove k8s-dashboard static token 2026-03-15 19:05:04 +00:00