feat(tokens): Add support for organization-owned API tokens and org-level token management
This commit is contained in:
11
changelog.md
11
changelog.md
@@ -1,5 +1,16 @@
|
||||
# Changelog
|
||||
|
||||
## 2025-11-28 - 1.2.0 - feat(tokens)
|
||||
Add support for organization-owned API tokens and org-level token management
|
||||
|
||||
- ApiToken model: added optional organizationId and createdById fields (persisted and indexed) and new static getOrgTokens method
|
||||
- auth.interfaces: IApiToken and ICreateTokenDto updated to include organizationId and createdById where appropriate
|
||||
- TokenService: create token options now accept organizationId and createdById; tokens store org and creator info; added getOrgTokens and revokeAllOrgTokens (with audit logging)
|
||||
- API: TokenApi now integrates PermissionService to allow organization managers to list/revoke org-owned tokens; GET /api/v1/tokens accepts organizationId query param and token lookup checks org management permissions
|
||||
- Router: PermissionService instantiated and passed to TokenApi
|
||||
- UI: api.service types and methods updated — IToken and ITokenScope include organizationId/createdById; getTokens and createToken now support an organizationId parameter and scoped scopes
|
||||
- .gitignore: added stories/ to ignore
|
||||
|
||||
## 2025-11-28 - 1.1.0 - feat(registry)
|
||||
Add hot-reload websocket, embedded UI bundling, and multi-platform Deno build tasks
|
||||
|
||||
|
||||
Reference in New Issue
Block a user