User API Middleware - Meander Platform - Likeperson App

Infrastructure medium complexity backend

Dependencies

Dependents

Entities

Integrations

Description

Next.js API route middleware enforcing multi-tenancy on all /api/v1/users endpoints. Extracts authenticated admin context from JWT, scopes every database query to the admin's organization_id, and blocks cross-tenant access regardless of query parameters. Issues elevated-privilege tokens for global admin flows with explicit audit logging.

Feature: User CRUD

user-api-middleware

Responsibilities

Extract and validate admin JWT on every users API request
Inject organization_id scope into all downstream service calls
Detect and block cross-tenant query parameter manipulation
Route global admin requests to elevated-privilege handler with audit logging

Interfaces

withOrgScope(handler: ApiHandler): ApiHandler

withGlobalAdminAudit(handler: ApiHandler): ApiHandler

extractAdminContext(req: NextRequest): AdminContext

Relationships

Dependencies (2)

Components this component depends on

infrastructure Audit Service Shared service User Management Service

Related Data Entities (5)

Data entities managed by this component

Activity 25 fields core Local Association 16 fields core Organization 22 fields core Role 14 fields configuration User 26 fields core