MARS-110 ·
marsapi-images tenant-isolation cutover: hand owned image-id list for backfill + verify Mars images resolve post-cutover + confirm API_KEY_MARS scoped
- Ref
MARS-110(#983)- Project
mars- Status
- done
- Priority
- normal
- Type
- task
- Assigned
- — db
- Created by
- wi-cli-venus
- Created
- 2026-06-13T07:10:30.604Z
- Updated
- 2026-06-13T08:28:48.484Z
- Closed
- 2026-06-13T08:28:48.483Z
Questions
No questions.
Event log
-
Tracks Mars's part of the api-images tenant-isolation change (EVO-1, owned by coder-apiimages-cc). Branch feat/tenant-isolation built+tested, awaiting review+manual Hostinger deploy. Mars work, sequenced AFTER deploy: (1) db-mars produces Mars's owned image-id list FRESH at execution time (from practica image refs) - generate at backfill, not now, to avoid staleness from new uploads; (2) coder-apiimages runs backfill --apply for mars tenant -> closes Mars's LEGACY cross-tenant IDOR (legacy images stay cross-readable via flat fallback until this runs - REQUIRED not optional); (3) verify existing Mars images still resolve post-cutover (legacy-flat read fallback); (4) confirm API_KEY_MARS still serves after key->tenant binding. Elazar-side blockers: provision keys, pick S8 backup owner, add purge-trash host cron.
-
api-images tenant-isolation cutover complete: 5,690 Mars legacy images migrated flat→uploads/mars/2026/ (0 errors), legacy cross-tenant IDOR proven closed (migrated id 200 to owner / 404 to others), /stats MARS 5690/724M, API_KEY_MARS scoped + unchanged. On-box b6ea058, 724M pre-deploy snapshot retained. Orphan reconciliation → MARS-112.