Chris
|
405000ded5
|
feat(role): add role_code across schema and APIs
|
2026-04-03 15:49:22 +08:00 |
|
Chris
|
94cec746cb
|
chore(env): split dev/prod env files and clarify keycloak settings
|
2026-04-03 14:43:13 +08:00 |
|
Chris
|
7b9915e81c
|
update
|
2026-04-03 04:57:22 +08:00 |
|
Chris
|
dc51af8c39
|
update
|
2026-04-03 04:52:17 +08:00 |
|
Chris
|
065f1d52f0
|
Stop tracking local env files
|
2026-04-03 04:25:36 +08:00 |
|
Chris
|
a187acf58c
|
Switch access control from groups to realm roles
|
2026-04-03 03:03:43 +08:00 |
|
Chris
|
73ed4ff0ff
|
Add Redis-backed cache backend with env switch
|
2026-04-03 02:38:54 +08:00 |
|
Chris
|
0bc667847d
|
refactor(keycloak): remove authentik naming and switch to keycloak-only paths
|
2026-04-01 02:01:41 +08:00 |
|
Chris
|
94ae0e5a7a
|
chore(env): use member-frontend oidc client and keep member-backend admin client
|
2026-04-01 01:30:44 +08:00 |
|
Chris
|
f582ef3850
|
chore(env): configure keycloak master client for local backend
|
2026-04-01 01:20:46 +08:00 |
|
Chris
|
8ed50cdcc6
|
refactor(auth): use group-only admin access and remove admin api-key flow from frontend/admin routes
|
2026-03-30 21:39:43 +08:00 |
|
Chris
|
0e17997e66
|
feat(security): enforce admin allowlist guard on admin APIs and attach bearer for admin client
|
2026-03-30 21:25:57 +08:00 |
|
Chris
|
58ea76f8b6
|
fix(auth): correct userinfo endpoint fallback for authentik profile enrichment
|
2026-03-30 03:13:29 +08:00 |
|
Chris
|
8f06f75cca
|
feat: add username-password login flow via authentik token endpoint
|
2026-03-30 00:52:09 +08:00 |
|
Chris
|
cb8e72ccc7
|
feat: configure authentik member oidc and local dev token compatibility
|
2026-03-30 00:34:59 +08:00 |
|
Chris
|
06d78fbec2
|
chore: add local development env files and startup script
|
2026-03-29 23:34:34 +08:00 |
|