Kyle Mendell
|
c87b9a97aa
|
limits
|
2026-07-13 11:12:46 -05:00 |
|
Kyle Mendell
|
3893376cba
|
Merge branch 'main' into feat/huma-api-docs
|
2026-07-12 12:48:50 -05:00 |
|
Alessandro (Ale) Segala
|
cfda5f693b
|
refactor: manage instance ID in the KV table (#1579)
|
2026-07-11 16:16:05 +02:00 |
|
Kyle Mendell
|
f8b441fb06
|
feat: built in api documentation via huma gin adapter
|
2026-07-10 16:31:45 -05:00 |
|
Sean McKenzie
|
6734585712
|
feat: add description field to oidc clients (#1547)
Co-authored-by: Elias Schneider <login@eliasschneider.com>
|
2026-07-08 13:41:51 +02:00 |
|
Elias Schneider
|
c85a4e63da
|
fix: disable one time access token exchange for disabled users
|
2026-07-08 12:04:16 +02:00 |
|
Elias Schneider
|
ce7d3a7e1d
|
tests(unit): fix wrong migration name
|
2026-07-08 11:51:43 +02:00 |
|
Elias Schneider
|
09d196f7c5
|
feat: add OAuth APIs with scoped permissions (#1542)
Co-authored-by: Alessandro (Ale) Segala <43508+ItalyPaleAle@users.noreply.github.com>
|
2026-07-06 12:25:02 -07:00 |
|
Alessandro (Ale) Segala
|
eefd51cc4d
|
fix: various bugs in observability / OTel (#1564)
|
2026-07-05 14:14:39 -07:00 |
|
Alessandro (Ale) Segala
|
f68ad42618
|
chore: use go-kit for sending emails (#1565)
|
2026-07-05 13:10:11 -07:00 |
|
Alessandro (Ale) Segala
|
9607495ab4
|
refactor: integrate Francis actor framework for background jobs, cron scheduling, and rate limiting (#1556)
Co-authored-by: Elias Schneider <login@eliasschneider.com>
Co-authored-by: Claude <noreply@anthropic.com>
|
2026-07-03 08:36:45 +02:00 |
|
Elias Schneider
|
ecad31cae2
|
refactor: migrate signup functionality to single usersignup module
|
2026-06-30 20:53:31 +02:00 |
|
Elias Schneider
|
58fcf7cbe6
|
refactor: migrate Webauthn functionality to single webauthn module
|
2026-06-29 14:05:07 +02:00 |
|
Elias Schneider
|
9fce987106
|
refactor: migrate API key functionality to single apikey module
|
2026-06-29 12:11:18 +02:00 |
|
James18232
|
97bd466f38
|
feat: prompt admin with PKCE client support hint (#1499)
Co-authored-by: james <james@goldfish.net>
Co-authored-by: Alessandro (Ale) Segala <43508+ItalyPaleAle@users.noreply.github.com>
Co-authored-by: Elias Schneider <login@eliasschneider.com>
Co-authored-by: Kyle Mendell <kmendell@ofkm.us>
|
2026-06-28 11:10:30 -07:00 |
|
Elias Schneider
|
d467855870
|
feat: add ability to skip consent for client
|
2026-06-26 23:35:26 +02:00 |
|
Elias Schneider
|
519cda0eef
|
refactor: remove dead code
|
2026-06-22 21:58:55 +02:00 |
|
Elias Schneider
|
8158452b37
|
refactor: use fosite for OAuth 2.0 logic (#1520)
|
2026-06-22 18:42:02 +02:00 |
|
Elias Schneider
|
8a75774971
|
fix: callback URL validation not validated if prompt=none
|
2026-06-16 12:02:57 +02:00 |
|
Elias Schneider
|
3d9d4de619
|
fix: PAR parameters not respected by authorize page
|
2026-06-16 09:29:34 +02:00 |
|
Elias Schneider
|
4f97cd4188
|
refactor: fix linter issues
|
2026-06-02 14:08:33 +02:00 |
|
Thibault NORMAND
|
68a5abdcca
|
feat(oauth): add support for Pushed Authorization Requests (RFC9126) (#1404)
Co-authored-by: Elias Schneider <login@eliasschneider.com>
|
2026-06-02 14:02:12 +02:00 |
|
Elias Schneider
|
5db570bf66
|
feat: remove EXIF/XMP metadata from uploaded images (#1477)
|
2026-05-19 20:56:14 -07:00 |
|
Elias Schneider
|
9dd3d319cf
|
feat: delete OAuth refresh token on RP initiated logout (#1480)
|
2026-05-19 17:05:44 +02:00 |
|
Elias Schneider
|
cc9163f577
|
fix: make stream of downloaded logos seekable for S3 checksum calculation
|
2026-05-19 16:28:30 +02:00 |
|
Elias Schneider
|
b27a52a591
|
revert: delete refresh tokens on end-session to prevent reuse after logout (#1458)
This reverts commit 7aacbd0245.
|
2026-05-18 23:36:39 +02:00 |
|
Elias Schneider
|
8ad95b8af1
|
refactor: apply go 1.26.0 syntax updated
|
2026-05-18 23:06:54 +02:00 |
|
Elias Schneider
|
ce6bdb9d7e
|
fix: reject unknown PKCE code challenge methods
|
2026-05-18 22:07:20 +02:00 |
|
Elias Schneider
|
8b22fcaaa4
|
fix: add email_verified to reserved claims list
|
2026-05-18 21:08:51 +02:00 |
|
wucm667
|
7aacbd0245
|
fix(oidc): delete refresh tokens on end-session to prevent reuse after logout (#1458)
Co-authored-by: Alessandro (Ale) Segala <43508+ItalyPaleAle@users.noreply.github.com>
Signed-off-by: wucm667 <stevenwucongmin@gmail.com>
|
2026-05-15 21:25:40 +00:00 |
|
Alessandro (Ale) Segala
|
f4706cd6cc
|
feat: add support for "select_account" prompt (#1453)
Co-authored-by: Elias Schneider <login@eliasschneider.com>
|
2026-04-26 17:26:21 +00:00 |
|
Elias Schneider
|
e33a9b8c88
|
chore: post dependency upgrade fixes
|
2026-04-26 15:46:35 +02:00 |
|
John
|
64d4ac7919
|
feat: add support for response_mode=form_post (#1360)
Co-authored-by: Alessandro (Ale) Segala <43508+ItalyPaleAle@users.noreply.github.com>
Co-authored-by: Kyle Mendell <kmendell@ofkm.us>
Co-authored-by: Elias Schneider <login@eliasschneider.com>
|
2026-04-26 14:11:35 +02:00 |
|
Alessandro (Ale) Segala
|
2f0338211d
|
chore: update golangci-lint (#1440)
|
2026-04-21 11:53:06 -05:00 |
|
Elias Schneider
|
444f7ff2b0
|
feat: return not found. on /setup if already completed
|
2026-04-19 20:13:19 +02:00 |
|
Elias Schneider
|
978ac87def
|
fix: access token renewal bypasses important checks
|
2026-04-19 18:27:44 +02:00 |
|
Robert Jaakke
|
59fe481af9
|
feat: add OpenID Connect prompt Parameter Handling (#1299)
Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com>
Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Co-authored-by: Elias Schneider <login@eliasschneider.com>
|
2026-04-19 18:03:08 +02:00 |
|
Elias Schneider
|
5c4d7ff877
|
feat: add auth method claim (amr) to tokens (#1433)
|
2026-04-18 22:31:24 +02:00 |
|
jose_d
|
33cceeafa8
|
feat: add ability to revoke passkeys of users as admin (#1386)
Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: jose-d <7630424+jose-d@users.noreply.github.com>
Co-authored-by: Alessandro (Ale) Segala <43508+ItalyPaleAle@users.noreply.github.com>
Co-authored-by: Elias Schneider <login@eliasschneider.com>
|
2026-04-12 16:29:42 +00:00 |
|
刘祺
|
86152d996c
|
fix(ldap): resolve posixGroup memberUid as bare usernames (#1408) (#1422)
|
2026-04-12 15:55:48 +02:00 |
|
Alessandro (Ale) Segala
|
2b94535ade
|
fix: disable callback URLs with protocols "javascript" and "data" (#1397)
|
2026-04-02 17:01:44 -07:00 |
|
Chotow
|
95e9af4bbf
|
fix: avoid fmt.Sprintf on custom GeoLiteDBUrl without %s placeholder (#1384)
|
2026-03-18 12:41:14 +00:00 |
|
Kyle Mendell
|
0c039cc88c
|
fix: derive LDAP admin access from group membership (#1374)
|
2026-03-11 21:13:04 -05:00 |
|
Alessandro (Ale) Segala
|
d71966f996
|
refactor: separate querying LDAP and updating DB during sync (#1371)
|
2026-03-08 14:03:58 -05:00 |
|
Alessandro (Ale) Segala
|
832b7fbff4
|
fix: better error messages when there's another instance of Pocket ID running (#1370)
|
2026-03-08 15:37:38 +01:00 |
|
Alessandro (Ale) Segala
|
2f56d16f98
|
fix: various fixes in background jobs (#1362)
Co-authored-by: Elias Schneider <login@eliasschneider.com>
|
2026-03-07 17:07:26 +00:00 |
|
Elias Schneider
|
e7bd66d1a7
|
tests: fix wrong seed data
|
2026-03-07 17:51:44 +01:00 |
|
Ken Watanabe
|
34890235ba
|
Merge commit from fork
|
2026-03-07 16:59:25 +01:00 |
|
Alessandro (Ale) Segala
|
27ca713cd4
|
fix: one-time-access-token route should get user ID from URL only (#1358)
|
2026-03-03 18:53:36 -08:00 |
|
Alessandro (Ale) Segala
|
4d22c2dbcf
|
fix: federated client credentials not working if sub ≠ client_id (#1342)
Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
|
2026-03-01 18:48:20 +01:00 |
|