GDPRScanner

netadmin/GDPRScanner

Fork 0

Commit Graph

Author	SHA1	Message	Date
StyxX65	1aaf400771	feat: role-scoped viewer tokens — restrict shared links to student or staff items Add a Role scope dropdown to the Share modal (All roles / Ansatte / Elever). Scope is stored as {"role": "student"\|"staff"} in viewer_tokens.json and enforced server-side in GET /api/db/flagged via session["viewer_scope"]. Client-side, #filterRole is pre-set and hidden for scoped viewers so the constraint cannot be bypassed. Existing tokens and PIN sessions remain unrestricted. Role badge shown on each scoped token row in the Active links list. Files: app_config.py, routes/viewer.py, routes/database.py, gdpr_scanner.py, templates/index.html, static/js/viewer.js, static/js/auth.js, lang/en.json, lang/da.json, lang/de.json, CLAUDE.md, CHANGELOG.md, README.md, MANUAL-EN.md, MANUAL-DA.md Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-12 09:30:38 +02:00
Henrik Højmark	9c7df76fbd	Initial commit	2026-04-11 04:38:11 +02:00

Author

SHA1

Message

Date

StyxX65

1aaf400771

feat: role-scoped viewer tokens — restrict shared links to student or staff items

Add a Role scope dropdown to the Share modal (All roles / Ansatte / Elever).
Scope is stored as {"role": "student"|"staff"} in viewer_tokens.json and
enforced server-side in GET /api/db/flagged via session["viewer_scope"].
Client-side, #filterRole is pre-set and hidden for scoped viewers so the
constraint cannot be bypassed. Existing tokens and PIN sessions remain
unrestricted. Role badge shown on each scoped token row in the Active links list.

Files: app_config.py, routes/viewer.py, routes/database.py, gdpr_scanner.py,
templates/index.html, static/js/viewer.js, static/js/auth.js,
lang/en.json, lang/da.json, lang/de.json,
CLAUDE.md, CHANGELOG.md, README.md, MANUAL-EN.md, MANUAL-DA.md

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-04-12 09:30:38 +02:00

Henrik Højmark

9c7df76fbd

Initial commit

2026-04-11 04:38:11 +02:00

2 Commits