Paradaux
IssuesPAR-39DoneOpen ↗
0

Endpoint to get own identity/information akin to /firms/me

Add a "who am I" endpoint so an API caller can fetch their own identity/scope, akin to /firms/me.

Technical notes — The authenticated principal treasury-rest-api/…/security/VerifiedToken already carries everything needed: ownerUuid, keyType (PERSONAL/BUSINESS/GOVERNMENT), scoped accountId/firmId, and keyId (injected via @AuthenticationPrincipal). AuthController only exposes POST /rotate. Add GET /api/v1/auth/me (or /api/v1/me) returning a thin DTO over the injected VerifiedToken — no new auth plumbing.

Comments

tesks · Jun 4, 2026, 9:24 AM

Code context — The authenticated principal treasury-rest-api/…/security/VerifiedToken already carries everything a "who am I" response needs: ownerUuid, keyType (PERSONAL/BUSINESS/GOVERNMENT), scoped accountId/firmId, and keyId — injected via @AuthenticationPrincipal. But AuthController only exposes POST /rotate.

Fix: add GET /api/v1/auth/me (or /api/v1/me) returning a thin DTO over the injected VerifiedToken — no new auth plumbing, parallel to the existing /firms/me.

tesks · Jun 4, 2026, 9:19 PM

Verified state (Planned is correct — not done): only firm-scoped endpoints exist (/firms/me, /me/accounts, /me/employees, /me/roles in FirmController). The requested generic identity endpoint — GET /api/v1/auth/me returning a thin DTO over VerifiedToken (owner/keyType/accountId/firmId) — does not exist; AuthController still only exposes POST /rotate. Genuinely open.

Activity

  • ParadauxIO linked a commit — Commit f5c76e2 — Release treasury-rest-api 2.1.0 (PAR-39, PAR-102, PAR-116)Jun 7, 2026, 2:51 PM
  • ParadauxIO linked a commit — Commit 9a61b50 — Add GET /api/v1/auth/me identity endpoint (PAR-39)Jun 7, 2026, 2:51 PM
  • ParadauxIO changed status to Status → DoneJun 7, 2026, 2:51 PM
  • ParadauxIO linked a pull request — PR #11 merged — Release: develop → mainJun 7, 2026, 2:51 PM
  • ParadauxIO linked a pull request — PR #11 open — Release: develop → mainJun 7, 2026, 2:51 PM
  • ParadauxIO linked a commit — Commit f5c76e2 — Release treasury-rest-api 2.1.0 (PAR-39, PAR-102, PAR-116)Jun 7, 2026, 2:51 PM
  • ParadauxIO linked a pull request — PR #11 open — Release: develop → mainJun 6, 2026, 10:13 PM
  • ParadauxIO linked a pull request — PR #11 open — Release: develop → mainJun 6, 2026, 11:40 AM
  • ParadauxIO linked a pull request — PR #11 open — Release: develop → mainJun 5, 2026, 12:36 PM
  • tesks changed status to Status → Pending ReleaseJun 5, 2026, 7:01 AM
  • ParadauxIO linked a commit — Commit 9a61b50 — Add GET /api/v1/auth/me identity endpoint (PAR-39)Jun 5, 2026, 7:01 AM
  • tesks changed status to Status → In ProgressJun 5, 2026, 6:59 AM
  • tesks commentedJun 4, 2026, 9:19 PM
  • tesks description: Description updatedJun 4, 2026, 9:59 AM
  • tesks commentedJun 4, 2026, 9:24 AM
  • tesks assigned Assigned to rianJun 4, 2026, 9:23 AM
  • tesks set priority to Priority → NormalJun 4, 2026, 9:23 AM