AUTH-015: Add auth check to GET /auth/users/{user_id}

**Priority:** Critical | **Estimate:** S

`GET /auth/users/{user_id}` returns user details (email, name, etc.) with no authentication. Anyone can enumerate user IDs and extract emails.

## Fix
Add authentication requirement. Options:
- Require auth token (any authenticated user can look up users)
- Or restrict to admin/moderator + self

## Acceptance Criteria
- [ ] Endpoint requires authentication
- [ ] Unauthenticated requests return 401
- [ ] Tests cover authenticated and unauthenticated access

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

AUTH-015: Add auth check to GET /auth/users/{user_id} #580

Fix

Acceptance Criteria

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

AUTH-015: Add auth check to GET /auth/users/{user_id} #580

Description

Fix

Acceptance Criteria

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions