trentuna/candle-annotator
8
0
Fork 0
Code Issues Pull requests Releases Packages Activity Actions
candle-annotator/openspec/changes/user-accounts
History
Marko Djordjevic 5f727d84c6 Scope all Drizzle queries by user_id from authenticated session 
Every data API route now filters SELECT, INSERT, UPDATE, and DELETE
queries by the authenticated user's ID, ensuring full multi-tenant
data isolation. Candle queries are scoped via chart_id ownership.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-02-20 13:08:09 +01:00
..
specs Implement task 6.1: Create PUT /api/auth/profile endpoint for updating user display name 2026-02-20 10:20:20 +01:00
.openspec.yaml Implement task 6.1: Create PUT /api/auth/profile endpoint for updating user display name 2026-02-20 10:20:20 +01:00
design.md Implement task 6.1: Create PUT /api/auth/profile endpoint for updating user display name 2026-02-20 10:20:20 +01:00
proposal.md Implement task 6.1: Create PUT /api/auth/profile endpoint for updating user display name 2026-02-20 10:20:20 +01:00
tasks.md Scope all Drizzle queries by user_id from authenticated session 2026-02-20 13:08:09 +01:00
tasks_BACKUP.md Implement task 6.1: Create PUT /api/auth/profile endpoint for updating user display name 2026-02-20 10:20:20 +01:00