Complete Section 1 security/auth hardening

2026-04-30 11:35:56 +07:00
parent 432ffbcdb9
commit 12d2d9458f
15 changed files with 863 additions and 232 deletions
--- a/app/schemas/wordpress.py
+++ b/app/schemas/wordpress.py
@@ -41,6 +41,10 @@ class VerifySessionResponse(BaseModel):
    wp_user_info: Optional[dict[str, Any]] = Field(
        default=None, description="WordPress user info from API"
    )
+    access_token: Optional[str] = Field(
+        default=None,
+        description="Signed API access token for authenticated website-scoped calls",
+    )


 class SyncUsersRequest(BaseModel):