Skip to content

GET /api/v1/admin/super/security

This page is auto-generated from src/admin/routes.ts. Do not edit by hand — see docs/dev/docs-auto-sync.md.

:warning: Heuristic extraction — not a contract. Response shapes below are mined from c.json(...) literals in the handler via an AST walker. Computed fields, ternaries, and non-literal returns are shown as placeholders. Refer to the linked source file for the authoritative behaviour.

No requireCapability middleware detected on this route. Surface-level auth (admin token, dashboard session, org API key, anonymous proxy) is enforced by the parent router — see Source below.

Other middleware observed on this route (heuristic):

  • requireSuperAdmin
  • listSuperSecurity

#570 Phase B — platform-admin security view. Same dual-mode gate; the implementation lives in src/admin/super.ts. Aggregates over the failed_auth_attempts table from Phase A (migration 0050), cross-org by design — failed auth has no tenant.

No c.json(...) calls detected in the handler. The route may return a non-JSON response (HTML, file stream, redirect), delegate to a named handler defined elsewhere, or build the response object dynamically. Refer to the source file.

  • File: src/admin/routes.ts
  • Line: 359