dave/storkit
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 10 Wiki Activity

storkit: done 389_story_whatsapp_phone_number_allowlist_authorization

Browse Source
This commit is contained in:
dave
2026-03-25 13:42:35 +00:00
parent 84a775be77
commit 49ac23044a
1 changed files with 21 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
.storkit/work/5_done/389_story_whatsapp_phone_number_allowlist_authorization.md Normal file
View File

@@ -0,0 +1,21 @@
---
name: "WhatsApp phone number allowlist authorization"
---
# Story 389: WhatsApp phone number allowlist authorization
## User Story
As a bot operator, I want to restrict which phone numbers can interact with the bot, so that only authorized users can send commands.
## Acceptance Criteria
- [ ] New optional allowed_phones list in bot.toml for WhatsApp (similar to Matrix allowed_users)
- [ ] When configured, only messages from listed phone numbers are processed; all others are silently ignored
- [ ] When not configured (empty or absent), all phone numbers are allowed (backwards compatible)
- [ ] Unauthorized senders are logged but receive no response
- [ ] The allowlist applies to all message types: commands, LLM conversations, and async commands (htop, delete)
## Out of Scope
- TBD