What's Changed
Refactor: remove bearer auth and platform_source context filter (#2081)
- Drop bearer-token auth from the worker API. Worker binds localhost-only and CORS restricts origins to localhost — the token added friction for every internal client (hooks, CLI, viewer, sync script) with no real security benefit for single-user local deployments.
- Drop the unused
platform_sourcequery-time filter from the/api/context/injectpipeline (ContextBuilder, ObservationCompiler, SearchRoutes, context handler, transcripts processor). The DB column stays — only the WHERE-clause filter and its plumbing are removed. - Replace the removed auth with a simple in-memory rate limiter (300 req/min) as a lightweight compensating control. Limiter normalises IPv4-mapped IPv6, emits
Retry-Afteron 429, and has a size-guarded prune that never runs on localhost.
Cleanup
- Deleted
src/shared/auth-token.tsand all its dependents (worker-utils.tsAuthorization header,ViewerRoutes.tstoken injection, CORSallowedHeaders: ['Authorization'],sync-marketplace.cjsadmin restart header). - Stopped tracking
.docker-blowout-data/claude-mem.dband added the directory to.gitignore.