fix(server): reject non-participant stage mutations

2026-06-16 10:50:38 +09:00 · 2026-04-09 07:29:56 -05:00 · 2026-04-09 07:29:56 -05:00 · 61ed4ef90c
commit 61ed4ef90c
parent 1ac1dbcb3e
2 changed files with 102 additions and 9 deletions
--- a/server/src/routes/issues.ts
+++ b/server/src/routes/issues.ts
@ -96,6 +96,13 @@ function executionPrincipalsEqual(
  return left.type === "agent" ? left.agentId === right.agentId : left.userId === right.userId;
 }

+function executionParticipantMatchesAgent(
+  participant: ParsedExecutionState["currentParticipant"] | null,
+  agentId: string | null | undefined,
+) {
+  return Boolean(agentId) && participant?.type === "agent" && participant.agentId === agentId;
+}
+
 function buildExecutionStageWakeContext(input: {
  state: ParsedExecutionState;
  wakeRole: ExecutionStageWakeContext["wakeRole"];
@ -1379,10 +1386,14 @@ export function issueRoutes(
        ? (updateFields.executionPolicy as NormalizedExecutionPolicy | null)
        : previousExecutionPolicy;

+    const requestedStatus = typeof updateFields.status === "string" ? updateFields.status : undefined;
+    const requestedAssigneePatchProvided =
+      req.body.assigneeAgentId !== undefined || req.body.assigneeUserId !== undefined;
+
    const transition = applyIssueExecutionPolicyTransition({
      issue: existing,
      policy: nextExecutionPolicy,
-      requestedStatus: typeof updateFields.status === "string" ? updateFields.status : undefined,
+      requestedStatus,
      requestedAssigneePatch: {
        assigneeAgentId:
          req.body.assigneeAgentId === undefined ? undefined : (req.body.assigneeAgentId as string | null),
@ -1408,6 +1419,27 @@ export function issueRoutes(
    }
    Object.assign(updateFields, transition.patch);

+    const effectiveExecutionState = parseIssueExecutionState(
+      transition.patch.executionState !== undefined ? transition.patch.executionState : existing.executionState,
+    );
+    const isUnauthorizedAgentStageMutation =
+      req.actor.type === "agent" &&
+      req.actor.agentId &&
+      existing.status === "in_review" &&
+      transition.workflowControlledAssignment &&
+      !transition.decision &&
+      effectiveExecutionState?.status === "pending" &&
+      (
+        (requestedStatus !== undefined && requestedStatus !== "in_review") ||
+        requestedAssigneePatchProvided
+      ) &&
+      !executionParticipantMatchesAgent(effectiveExecutionState.currentParticipant, req.actor.agentId);
+    if (isUnauthorizedAgentStageMutation) {
+      const stageLabel = effectiveExecutionState.currentStageType ?? "execution";
+      res.status(403).json({ error: `Only the active ${stageLabel} participant can update this stage` });
+      return;
+    }
+
    const nextAssigneeAgentId =
      updateFields.assigneeAgentId === undefined ? existing.assigneeAgentId : (updateFields.assigneeAgentId as string | null);
    const nextAssigneeUserId =