Actions
Task #921
open
PE-1806: Protect mutation endpoints with auth
Status:
To do
Priority:
High
Assignee:
-
Target version:
-
Start date:
2026-05-16
Due date:
% Done:
0%
Estimated time:
Description
Require authentication for mutation endpoints:\n- Clone, delete, update should require valid token\n- Currently these are public which is a security risk\n- Use persona.token middleware on:\n - POST /api/v1/personas/{id}/clone\n - PATCH /api/v1/personas/{id}\n - DELETE /api/v1/personas/{id}\n\nRead operations (index, show) can remain public for easier integration.
No data to display
Actions