M1+M2+M10 (CC2 R3): JWT auth + admin users + GDPR backend

Browse Source

- auth/auth_v2.py: JWT login/refresh/logout/me + bcrypt + tenant_id/role/tier claims
- auth/admin_users.py: /api/admin/users CRUD + invite/role/suspend + bulk CSV
- auth/gdpr.py: cookie consent + Art.20 export + Art.17 erasure + admin queue
- auth/seed_demo.py: 3 demo tenants + 4 users (damir@pgz.hr / PGZ2026!)
- Removed legacy /api/auth/login + /api/auth/me from pgz_sport_api.py
- Wired auth/admin/gdpr routers into FastAPI

5/5 live curl tests pass: damir@pgz.hr login → JWT with tenant_id=1, role=pgz_admin, tier=0

...

This commit is contained in:

Damir Radulić

2026-05-05 00:09:09 +02:00

parent c12a8e9698

commit 492c8fdd87

23 changed files with 21518 additions and 49 deletions

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Download Patch File Download Diff File Expand all files Collapse all files

_data/uploads/invoices/20260505_000630_ina_racun.png

BIN

Binary file not shown.

Side by Side After Width:  |  Height:  |  Size: 46 KiB