Claude d4c734737b feat: role-based access via Zitadel project roles ...

Replace the ALLOWED_USER_IDS sub-allowlist with a Zitadel project role
check: tokens must carry the role from REQUIRED_ROLE (default "user")
in the urn:zitadel:iam:org:project[:id]:roles claim. Roles are granted
per account in Zitadel (project ClaudeDo), where access is now managed.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

2026-06-10 11:25:34 +00:00

3.3 KiB

Raw Permalink Blame History

View Raw