refactor(auth): use group-only admin access and remove admin api-key flow from frontend/admin routes

2026-03-30 21:39:43 +08:00
parent 0e17997e66
commit 8ed50cdcc6
6 changed files with 5 additions and 55 deletions
--- a/.env.example
+++ b/.env.example
@@ -21,6 +21,4 @@ AUTHENTIK_USERINFO_ENDPOINT=

 PUBLIC_FRONTEND_ORIGINS=https://member.ose.tw,https://mkt.ose.tw,https://admin.ose.tw
 INTERNAL_SHARED_SECRET=CHANGE_ME
-ADMIN_ALLOWLIST_EMAILS=
-ADMIN_ALLOWLIST_SUBS=
-ADMIN_REQUIRED_GROUPS=
+ADMIN_REQUIRED_GROUPS=member-admin