Description
Ensure API responses never accidentally serialize internal fields (especially encryptedSecret) by mapping entities to explicit response DTOs.
Deliverables
UserResponseDto/WalletResponseDto used as controller return types
- Confirmed
encryptedSecret never appears in any HTTP response
Depends on
Wire POST /wallets controller endpoint
Description
Ensure API responses never accidentally serialize internal fields (especially
encryptedSecret) by mapping entities to explicit response DTOs.Deliverables
UserResponseDto/WalletResponseDtoused as controller return typesencryptedSecretnever appears in any HTTP responseDepends on
Wire POST /wallets controller endpoint