mirror of
https://github.com/NoFxAiOS/nofx.git
synced 2026-07-06 20:41:14 +08:00
- Add CORS_ALLOWED_ORIGINS config (comma-separated origins, default allow-all) - CORS middleware now validates Origin header against allowlist - Add io.LimitReader to sentinel.go (was unbounded, now 256KB) - Include previous: agent chat auth middleware + frontend token header
19 lines
666 B
Go
19 lines
666 B
Go
package api
|
|
|
|
import (
|
|
"nofx/agent"
|
|
|
|
"github.com/gin-gonic/gin"
|
|
)
|
|
|
|
// RegisterAgentHandler registers NOFXi agent API routes on the main router.
|
|
// Chat endpoint requires authentication; market data endpoints are public.
|
|
func (s *Server) RegisterAgentHandler(h *agent.WebHandler) {
|
|
// Chat requires auth — can trigger trades and access account data
|
|
s.router.POST("/api/agent/chat", s.authMiddleware(), gin.WrapF(h.HandleChat))
|
|
// Public endpoints — read-only market data
|
|
s.router.GET("/api/agent/health", gin.WrapF(h.HandleHealth))
|
|
s.router.GET("/api/agent/klines", gin.WrapF(h.HandleKlines))
|
|
s.router.GET("/api/agent/ticker", gin.WrapF(h.HandleTicker))
|
|
}
|