Update Catalog Prompt Slots Router and Access Layer Exemptions

- Added documentation to the `catalog_prompt_slots.py` file to clarify its role as a global admin catalog requiring authentication and admin role, without tenant context. - Updated the `check_access_layer_hints.py` script to include `catalog_prompt_slots.py` in the list of exempt routers, ensuring proper access control for admin functionalities.
2026-06-15 15:27:03 +02:00 · 2026-06-15 15:27:03 +02:00 · 90e8f51566
commit 90e8f51566
parent 7e5ef4561a
2 changed files with 4 additions and 0 deletions
--- a/backend/routers/catalog_prompt_slots.py
+++ b/backend/routers/catalog_prompt_slots.py
@ -1,5 +1,8 @@
 """
 API: Katalog-Prompt-Slots (Stammdaten × Slot-Typ).
 Globaler Admin-Katalog (wie catalogs.py) — require_auth + Admin-Rolle, kein TenantContext.
 Eingetragen in backend/scripts/check_access_layer_hints.py EXEMPT_ROUTERS.
 """
 from __future__ import annotations
--- a/backend/scripts/check_access_layer_hints.py
+++ b/backend/scripts/check_access_layer_hints.py
@ -29,6 +29,7 @@ EXEMPT_ROUTERS: frozenset[str] = frozenset(
        "admin_user_content.py",  # Superadmin Moderation nutzerangelegter Inhalte; require_auth + is_superadmin — kein Vereinsmandant
        "admin_rights.py",  # Superadmin Rollen/Rechte (Capabilities, Kontingent-Bypass, Pläne); require_auth + is_superadmin — kein Vereinsmandant
        "catalogs.py",
        "catalog_prompt_slots.py",  # Admin Stammdaten KI-Prompt-Slots; require_auth + admin/superadmin — globaler Katalog, kein Vereinsmandant
        "skills.py",
        "maturity_models.py",
        "matrix_stack_bundle.py",