Andrew Lytvynov f15a4f4416 client/web: move API permission checks into handlers (#19576) ... There are only a couple endpoints that check peer capabilities. Keeping permission checks with the code that assumes they were performed, rather than with the routing layer, feels easier to reason about. Check that the caller is actually a peer and pass their capabilities via a context value for handlers that want to check them. Along with this, simplify the helper handler wrappers that are not needed for most of the endpoints. Updates #40851 Signed-off-by: Andrew Lytvynov <awly@tailscale.com>		2026-05-01 09:01:53 -07:00
..
build	client/web: precompress assets	2023-12-07 20:57:31 -05:00
src	client/web: signal need to wait for auth across tabs	2026-03-11 08:15:21 +00:00
assets.go	all: remove AUTHORS file and references to it	2026-01-23 15:49:45 -08:00
auth.go	client/web: signal need to wait for auth across tabs	2026-03-11 08:15:21 +00:00
index.html	client/web: use CSP hash for inline javascript	2023-12-11 20:22:56 -08:00
package.json	build(deps-dev): bump vitest from 1.3.1 to 1.6.1 in /client/web	2025-11-27 15:11:55 -07:00
qnap.go	all: remove AUTHORS file and references to it	2026-01-23 15:49:45 -08:00
styles.json	client/web: adjust colors and some UI margins	2023-12-01 15:41:57 -05:00
synology.go	all: remove AUTHORS file and references to it	2026-01-23 15:49:45 -08:00
tailwind.config.js	client/web: fix Vite CJS deprecation warning (#11288)	2024-02-28 16:28:22 -05:00
tsconfig.json	client/web: update vite and vitest to latest versions (#11200)	2024-02-23 14:50:41 -07:00
vite.config.ts	client/web: update vite and vitest to latest versions (#11200)	2024-02-23 14:50:41 -07:00
web_test.go	client/web: move API permission checks into handlers (#19576)	2026-05-01 09:01:53 -07:00
web.go	client/web: move API permission checks into handlers (#19576)	2026-05-01 09:01:53 -07:00
yarn.lock	build(deps): bump lodash from 4.17.21 to 4.17.23 in /client/web (#18476)	2026-02-19 10:22:22 -08:00