TradingAgents

History

Shaojie 1cee59dd9f fix: add API key auth, pagination, and configurable CORS to dashboard API (#3 ) Security hardening: - API key authentication via X-API-Key header on all endpoints (opt-in: set DASHBOARD_API_KEY or ANTHROPIC_API_KEY env var to enable) If no key is set, endpoints remain open (backward-compatible) - WebSocket auth via ?api_key= query parameter - CORS now configurable via CORS_ORIGINS env var (default: allow all) Pagination (all list endpoints): - GET /api/reports/list — limit/offset with total count - GET /api/portfolio/recommendations — limit/offset with total count - DEFAULT_PAGE_SIZE=50, MAX_PAGE_SIZE=500 Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>	2026-04-07 18:57:51 +08:00
..
__init__.py	feat(dashboard): web dashboard phase 1 - screening, analysis, portfolio (#2 )	2026-04-07 18:52:56 +08:00
portfolio.py	fix: add API key auth, pagination, and configurable CORS to dashboard API (#3 )	2026-04-07 18:57:51 +08:00

Shaojie 1cee59dd9f fix: add API key auth, pagination, and configurable CORS to dashboard API (#3 )

Security hardening:
- API key authentication via X-API-Key header on all endpoints
  (opt-in: set DASHBOARD_API_KEY or ANTHROPIC_API_KEY env var to enable)
  If no key is set, endpoints remain open (backward-compatible)
- WebSocket auth via ?api_key= query parameter
- CORS now configurable via CORS_ORIGINS env var (default: allow all)

Pagination (all list endpoints):
- GET /api/reports/list — limit/offset with total count
- GET /api/portfolio/recommendations — limit/offset with total count
- DEFAULT_PAGE_SIZE=50, MAX_PAGE_SIZE=500

Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>

2026-04-07 18:57:51 +08:00

__init__.py

feat(dashboard): web dashboard phase 1 - screening, analysis, portfolio (#2 )

2026-04-07 18:52:56 +08:00

portfolio.py

fix: add API key auth, pagination, and configurable CORS to dashboard API (#3 )

2026-04-07 18:57:51 +08:00