refactor(auth): use group-only admin access and remove admin api-key flow from frontend/admin routes

2026-03-30 21:39:43 +08:00
parent 15eee2fc9a
commit e1a6bbd844
11 changed files with 6 additions and 168 deletions
--- a/backend/.env.example
+++ b/backend/.env.example
@@ -21,6 +21,4 @@ AUTHENTIK_USERINFO_ENDPOINT=

 PUBLIC_FRONTEND_ORIGINS=https://member.ose.tw,https://mkt.ose.tw,https://admin.ose.tw
 INTERNAL_SHARED_SECRET=CHANGE_ME
-ADMIN_ALLOWLIST_EMAILS=
-ADMIN_ALLOWLIST_SUBS=
-ADMIN_REQUIRED_GROUPS=
+ADMIN_REQUIRED_GROUPS=member-admin