REQ-FUN-042
All write endpoints require a bearer token
What
All write endpoints SHALL require a bearer token.
Acceptance
Unauthenticated POST/PUT/PATCH/DELETE returns 401.
Source
OBJ-6.
established project management guidelines Mapping
Bearer-token auth on writes enforces resource identity at the integration surface.