memos

Commit Graph

Author	SHA1	Message	Date
Steven	8f136ffa75	fix(api): correct user registration logic and first-user detection - Changed first-user detection to check for any users instead of only HOST users - Moved registration setting check before role assignment to properly block unauthorized registrations - Fixed role assignment logic to ensure unauthenticated users always get USER role - Updated test cases to create host user first when not testing first-user scenario This ensures the first user is always created as HOST and registration settings are properly enforced for subsequent user creation. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>	2025-11-06 23:41:47 +08:00
boojack	21d31e3609	fix(security): implement security review recommendations (#5228 ) Co-authored-by: Claude <noreply@anthropic.com>	2025-11-06 23:32:27 +08:00

Author

SHA1

Message

Date

Steven

8f136ffa75

fix(api): correct user registration logic and first-user detection

- Changed first-user detection to check for any users instead of only HOST users
- Moved registration setting check before role assignment to properly block unauthorized registrations
- Fixed role assignment logic to ensure unauthenticated users always get USER role
- Updated test cases to create host user first when not testing first-user scenario

This ensures the first user is always created as HOST and registration settings are properly enforced for subsequent user creation.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>

2025-11-06 23:41:47 +08:00

boojack

21d31e3609

fix(security): implement security review recommendations (#5228 )

Co-authored-by: Claude <noreply@anthropic.com>

2025-11-06 23:32:27 +08:00

2 Commits