fuomag9 98e5dbc898 fix: require auth for geoip-status endpoint ...

Remove /api/geoip-status from the middleware public routes allowlist so
unauthenticated requests are rejected before reaching the route handler.
The route handler already has requireUser() for defense-in-depth.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-02-25 01:47:48 +01:00

1.2 KiB

Raw Blame History

View Raw