4d30bacc53
P1-2: Add onRequest auth hook to reject anonymous requests on all 7 VoicePrint endpoints. Previously, the auth middleware always attached a placeholder user (id='anonymous'), so per-route userId checks passed for unauthenticated clients. P1-3: Replace JSON body parsing with @fastify/multipart for POST /endpoints (/enroll, /analyze, /batch). Fastify JSON parser cannot produce Buffer from request.body; multipart/form-data is required for audio file uploads. Added 50MB file size limit.
32 lines
859 B
JSON
32 lines
859 B
JSON
{
|
|
"name": "@shieldai/api",
|
|
"version": "0.1.0",
|
|
"scripts": {
|
|
"dev": "tsx watch src/server.ts",
|
|
"build": "tsc",
|
|
"start": "node dist/server.js",
|
|
"test": "vitest run",
|
|
"test:coverage": "vitest run --coverage",
|
|
"lint": "eslint src/"
|
|
},
|
|
"dependencies": {
|
|
"@fastify/cors": "^10.0.1",
|
|
"@fastify/helmet": "^13.0.1",
|
|
"@fastify/multipart": "^7.7.3",
|
|
"@fastify/rate-limit": "^9.0.0",
|
|
"@fastify/sensible": "^6.0.1",
|
|
"@shieldai/correlation": "workspace:*",
|
|
"@shieldai/darkwatch": "workspace:*",
|
|
"@shieldai/db": "workspace:*",
|
|
"@shieldai/monitoring": "workspace:*",
|
|
"@shieldai/report": "workspace:*",
|
|
"@shieldai/types": "workspace:*",
|
|
"@shieldai/voiceprint": "workspace:*",
|
|
"fastify": "^5.2.0"
|
|
},
|
|
"devDependencies": {
|
|
"@vitest/coverage-v8": "^4.1.5",
|
|
"vitest": "^4.1.5"
|
|
}
|
|
}
|