boris/keywarden
1
1
Fork 0
Code Issues 4 Pull Requests Actions Packages Projects 1 Releases Wiki Activity

Implement users model and CRUD API #3

New Issue
Open
opened 2025-09-23 14:18:43 +00:00 by boris · 0 comments
boris commented 2025-09-23 14:18:43 +00:00
Owner
Copy Link

As an administrator, I want to create and view users so that I can manage who can log in and own SSH keys.

Acceptance Criteria (G/W/T)

  • Given an admin token, when I POST /api/v1/users with email, password, role, then a user row is created with hashed password and returned (sans hash).
  • Given multiple users exist, when I GET /api/v1/users as admin, then I see a paginated list (email, role, is_active).
  • Given a user id, when I GET /api/v1/users/{id} as admin, then I see user details (no password).
  • Given invalid email or short password, when I create a user, then I receive 422 with validation errors.
  • Given a non-admin token, when I hit admin-only routes, then I get 403 Forbidden.

Notes / Non-functional

  • Passwords hashed with Argon2.
  • Unique index on email.
  • Seed script for an initial admin.
As an administrator, I want to create and view users so that I can manage who can log in and own SSH keys. Acceptance Criteria (G/W/T) - [ ] Given an admin token, when I POST /api/v1/users with email, password, role, then a user row is created with hashed password and returned (sans hash). - [ ] Given multiple users exist, when I GET /api/v1/users as admin, then I see a paginated list (email, role, is_active). - [ ] Given a user id, when I GET /api/v1/users/{id} as admin, then I see user details (no password). - [ ] Given invalid email or short password, when I create a user, then I receive 422 with validation errors. - [ ] Given a non-admin token, when I hit admin-only routes, then I get 403 Forbidden. Notes / Non-functional - [ ] Passwords hashed with Argon2. - [ ] Unique index on email. - [ ] Seed script for an initial admin.
boris added this to the Minimum Viable Product milestone 2025-09-23 14:18:43 +00:00
boris added the
Kind/Feature
Priority
Critical
1
 labels 2025-09-23 14:18:43 +00:00
boris self-assigned this 2025-09-23 14:18:43 +00:00
boris added this to the Keywarden project 2025-09-23 14:18:43 +00:00
boris moved this to To Do in Keywarden on 2025-09-23 14:18:46 +00:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
Compat/Breaking
Breaking change that won't be backward compatible
Kind/Bug
Something is not working
Kind/Documentation
Documentation changes
Kind/Enhancement
Improve existing functionality
Kind/Feature
New functionality
Kind/Security
This is security issue
Kind/Testing
Issue or pull request related to testing
Priority
Critical
1
The priority is critical
Priority
High
2
The priority is high
Priority
Low
4
The priority is low
Priority
Medium
3
The priority is medium
Reviewed
Confirmed
1
Issue has been confirmed
Reviewed
Duplicate
2
This issue or pull request already exists
Reviewed
Invalid
3
Invalid issue
Reviewed
Won't Fix
3
This issue won't be fixed
Status
Abandoned
3
Somebody has started to work on this but abandoned work
Status
Blocked
1
Something is blocking this issue or pull request
Status
Need More Info
2
Feedback is required to reproduce issue or to continue work
No Label
Kind/Feature
Priority
Critical
1
Milestone
No items
No Milestone Minimum Viable Product
Projects
Clear projects
No project Keywarden
Assignees
Clear assignees
boris
No Assignees boris
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: boris/keywarden#3
No description provided.
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?