feat: Phase 2 - Authentication and authorization (T-010 to T-013)

backend/app/main.py

@@ -1,7 +1,22 @@
 from fastapi import FastAPI
+from fastapi.middleware.cors import CORSMiddleware
+
+from app.routers import auth as auth_router
 
 app = FastAPI(title="Attack Coverage Platform")
 
+# ── CORS ──────────────────────────────────────────────────────────────────
+app.add_middleware(
+    CORSMiddleware,
+    allow_origins=["http://localhost:3000", "http://localhost:5173"],
+    allow_credentials=True,
+    allow_methods=["*"],
+    allow_headers=["*"],
+)
+
+# ── Routers ──────────────────────────────────────────────────────────────
+app.include_router(auth_router.router, prefix="/api/v1")
+
 
 @app.get("/health")
 def health():