Till JS a9529bcf1b fix(mana-sync): enable row-level security on sync_changes ... Defense-in-depth on top of the existing application-level WHERE clauses: - Migrate() now ENABLE + FORCE row level security on sync_changes and installs a policy that gates rows on current_setting('app.current_user_id'). FORCE makes the policy apply to the table owner too, so the application role used by mana-sync cannot bypass it regardless of grants. - New withUser(ctx, userID, fn) helper opens a transaction and calls set_config('app.current_user_id', userID, true) before running fn. Empty userIDs are rejected up-front so an unauthenticated request can never reach the database with an empty RLS scope (which would match every row). - RecordChange / GetChangesSince / GetAllChangesSince all run inside withUser. WITH CHECK on the policy double-validates the user_id column on insert against the active session, so a future code path that forgets the WHERE clause cannot leak data. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>		2026-04-07 13:07:26 +02:00
..
cmd/server	feat: rename ManaCore to Mana across entire codebase	2026-04-05 20:00:13 +02:00
internal	fix(mana-sync): enable row-level security on sync_changes	2026-04-07 13:07:26 +02:00
test	refactor: rename ManaDeck to Cards across entire monorepo	2026-04-01 11:45:21 +02:00
CLAUDE.md	chore: complete ManaCore → Mana rename (docs, go modules, plists, images)	2026-04-07 12:26:10 +02:00
Dockerfile	feat(local-first): add local-first architecture with Dexie.js, Go sync server, and Todo pilot	2026-03-27 11:17:58 +01:00
go.mod	chore: complete ManaCore → Mana rename (docs, go modules, plists, images)	2026-04-07 12:26:10 +02:00
go.sum	refactor(shared-go): extract shared auth package from 3 Go services	2026-04-02 13:27:44 +02:00
package.json	feat: rename ManaCore to Mana across entire codebase	2026-04-05 20:00:13 +02:00