Lars/shinkan-jinkendo
1
0
Fork 0
Code Issues 7 Pull Requests Actions Packages Projects Releases 3 Wiki Activity

DGSVO Compliance update 1 #30

Merged
Lars merged 48 commits from develop into main 2026-05-12 06:34:15 +02:00
Conversation 0 Commits 48 Files Changed 73 +4
2 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit b9adf6da84 - Show all commits

3
backend/routers/legal_documents.py
View File

@ -22,6 +22,9 @@ from auth import require_auth
from club_tenancy import is_superadmin from club_tenancy import is_superadmin
from db import get_db, get_cursor, r2d from db import get_db, get_cursor, r2d
# ACCESS_LAYER exempt: Plattform-Rechtstexte ohne Vereinsbezug.
# Öffentlicher GET-Endpoint ohne jegliche Auth; Admin-Endpoints nutzen require_auth + is_superadmin().
# Eingetragen in backend/scripts/check_access_layer_hints.py EXEMPT_ROUTERS.
router = APIRouter(tags=["legal_documents"]) router = APIRouter(tags=["legal_documents"])
VALID_TYPES = {"impressum", "privacy_policy", "terms_of_use", "media_policy"} VALID_TYPES = {"impressum", "privacy_policy", "terms_of_use", "media_policy"}

1
backend/scripts/check_access_layer_hints.py
View File

@ -22,6 +22,7 @@ EXEMPT_ROUTERS: frozenset[str] = frozenset(
"auth.py", "auth.py",
"admin_users.py", "admin_users.py",
"platform_media_storage.py", "platform_media_storage.py",
"legal_documents.py", # ACCESS_LAYER exempt: Plattform-Rechtstexte ohne Vereinsbezug; öffentlicher Endpoint ohne Auth, Admin-Endpoints require_auth + is_superadmin()
"catalogs.py", "catalogs.py",
"skills.py", "skills.py",
"maturity_models.py", "maturity_models.py",