423 Commits

Author	SHA1	Message	Date
Alessandro (Ale) Segala	2f56d16f98	fix: various fixes in background jobs (#1362) ... Co-authored-by: Elias Schneider <login@eliasschneider.com>	2026-03-07 17:07:26 +00:00
Elias Schneider	e7bd66d1a7	tests: fix wrong seed data	2026-03-07 17:51:44 +01:00
Ken Watanabe	34890235ba	Merge commit from fork	2026-03-07 16:59:25 +01:00
Alessandro (Ale) Segala	27ca713cd4	fix: one-time-access-token route should get user ID from URL only (#1358)	2026-03-03 18:53:36 -08:00
taoso	8fecc22888	feat: allow first name and display name to be optional (#1288) ... Co-authored-by: Kyle Mendell <kmendell@ofkm.us>	2026-03-03 21:37:39 +00:00
github-actions[bot]	45bcdb4b1d	chore: update AAGUIDs (#1354) ... Co-authored-by: stonith404 <58886915+stonith404@users.noreply.github.com>	2026-03-03 15:22:26 -06:00
Alessandro (Ale) Segala	89349dc1ad	fix: handle IPv6 addresses in callback URLs (#1355)	2026-03-03 10:52:42 +01:00
Alessandro (Ale) Segala	6159e0bf96	perf: frontend performance optimizations (#1344)	2026-03-01 13:04:38 -08:00
Alessandro (Ale) Segala	4d22c2dbcf	fix: federated client credentials not working if sub ≠ client_id (#1342) ... Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-03-01 18:48:20 +01:00
Elias Schneider	3a339e3319	fix: improve wildcard matching by using go-urlpattern (#1332)	2026-02-28 13:08:35 +00:00
Elias Schneider	0c41872cd4	fix: disallow API key renewal and creation with API key authentication (#1334)	2026-02-23 20:34:25 +01:00
Kyle Mendell	a90c8abe51	chore(deps): upgrade to node 24 and go 1.26.0 (#1328) ... Co-authored-by: ItalyPaleAle <43508+ItalyPaleAle@users.noreply.github.com> Co-authored-by: Elias Schneider <login@eliasschneider.com>	2026-02-23 19:50:44 +01:00
Kyle Mendell	ae269371da	feat: current version api endpoint (#1310)	2026-02-22 10:39:19 -08:00
James Ward	27caaf2cac	feat: add JWT ID for generated tokens (#1322)	2026-02-22 16:23:14 +00:00
Elias Schneider	0678699d0c	chore: upgrade dependencies	2026-02-22 17:14:57 +01:00
Alessandro (Ale) Segala	eb0456a395	fix: token endpoint must not accept params as query string args (#1321)	2026-02-17 22:31:09 -06:00
github-actions[bot]	97f2e4eec2	chore: update AAGUIDs (#1316) ... Co-authored-by: stonith404 <58886915+stonith404@users.noreply.github.com>	2026-02-16 09:54:02 -06:00
Kyle Mendell	60825c5743	chore: run formatter	2026-02-10 15:21:09 -06:00
Cheng Gu	310b81c277	feat: manageability of uncompressed geolite db file (#1234)	2026-02-10 21:17:06 +00:00
Yegor Pomortsev	6eebecd85a	fix: decode URL-encoded client ID and secret in Basic auth (#1263)	2026-01-24 20:52:17 +00:00
Elias Schneider	aab7e364e8	fix: increase rate limit for frontend and api requests	2026-01-24 20:29:50 +01:00
Elias Schneider	56afebc242	feat: add support for HTTP/2	2026-01-24 18:24:34 +01:00
Moritz	a5629e63d2	fix: prevent deletion of OIDC provider logo for non admin/anonymous users (#1267)	2026-01-24 17:23:21 +01:00
github-actions[bot]	317879bb37	chore: update AAGUIDs (#1257) ... Co-authored-by: stonith404 <58886915+stonith404@users.noreply.github.com>	2026-01-20 19:26:25 -06:00
Kyle Mendell	c62533d388	fix: ENCRYPTION_KEY needed for version and help commands (#1256)	2026-01-18 18:04:53 -06:00
Jasper Bernhardt	0978a89fcc	feat: add VERSION_CHECK_DISABLED environment variable (#1254)	2026-01-18 17:28:24 -06:00
Elias Schneider	2a11c3e609	fix: use user specific email verified claim instead of global one	2026-01-11 15:46:14 +01:00
Elias Schneider	746aa71d67	feat: add static api key env variable (#1229)	2026-01-11 15:36:27 +01:00
Elias Schneider	9ca3d33c88	feat: add environment variable to disable built-in rate limiting	2026-01-11 14:26:30 +01:00
Elias Schneider	4df4bcb645	fix: db version downgrades don't downgrade db schema	2026-01-11 14:14:44 +01:00
Elias Schneider	1e7442f5df	feat: add support for email verification (#1223)	2026-01-11 12:31:26 +01:00
Elias Schneider	811e8772b6	feat: add option to renew API key (#1214)	2026-01-09 12:08:58 +01:00
Elias Schneider	0a94f0fd64	feat: make home page URL configurable (#1215)	2026-01-07 22:01:51 +01:00
Elias Schneider	03f9be0d12	fix: login codes sent by an admin incorrectly requires a device token	2026-01-07 16:13:18 +01:00
Elias Schneider	2af70d9b4d	feat: add CLI command for encryption key rotation (#1209)	2026-01-07 09:34:23 +01:00
Elias Schneider	1a032a812e	fix: data import from sqlite to postgres fails because of wrong datatype	2026-01-06 16:08:49 +01:00
Justin Moy	2d7e2ec8df	feat: process nonce within device authorization flow (#1185) ... Co-authored-by: Elias Schneider <login@eliasschneider.com>	2026-01-04 18:18:17 +00:00
Elias Schneider	4881130ead	refactor: run SCIM jobs in context of gocron instead of custom implementation	2026-01-04 19:00:18 +01:00
Elias Schneider	d6a7b503ff	fix: invalid cookie name for email login code device token	2026-01-03 23:46:44 +01:00
Elias Schneider	a24b2afb7b	chore: add no-op migration to postgres	2026-01-03 15:12:14 +01:00
Elias Schneider	7c34501055	fix: localhost callback URLs with port don't match correctly	2026-01-03 15:07:56 +01:00
Elias Schneider	ba00f40bd4	fix: allow version downgrade database is dirty	2026-01-03 15:06:39 +01:00
Elias Schneider	2f651adf3b	fix: migration fails if users exist with no email address	2026-01-03 15:06:34 +01:00
Elias Schneider	2cce200892	fix: admins imported from LDAP lose admin privileges	2026-01-02 23:42:25 +01:00
Elias Schneider	4776b70d96	chore: upgrade dependencies	2026-01-02 17:55:24 +01:00
Elias Schneider	579cfdc678	feat: add support for SCIM provisioning (#1182)	2026-01-02 17:54:20 +01:00
Elias Schneider	d9e7bf9eef	fix: remove ambiguous characters from login code	2026-01-02 15:48:46 +01:00
Elias Schneider	e60b80632f	chore: preparation for merge into main branch	2025-12-30 17:01:22 +01:00
Elias Schneider	078152d4db	fix!: make wildcard matching in callback URLs more stricter (#1161)	2025-12-30 17:01:22 +01:00
Kyle Mendell	ba2f0f18f4	feat: remove DbProvider env variable and calculate it dynamically (#1114)	2025-12-30 17:01:22 +01:00