Chris
|
a187acf58c
|
Switch access control from groups to realm roles
|
2026-04-03 03:03:43 +08:00 |
|
Chris
|
73ed4ff0ff
|
Add Redis-backed cache backend with env switch
|
2026-04-03 02:38:54 +08:00 |
|
Chris
|
0bc667847d
|
refactor(keycloak): remove authentik naming and switch to keycloak-only paths
|
2026-04-01 02:01:41 +08:00 |
|
Chris
|
34fc865b30
|
fix(auth): relax keycloak audience check and auto-redirect logged-in user
|
2026-04-01 01:48:06 +08:00 |
|
Chris
|
c7ed517ed2
|
feat(idp): add keycloak-first support with authentik fallback
|
2026-04-01 00:41:38 +08:00 |
|
Chris
|
8ed50cdcc6
|
refactor(auth): use group-only admin access and remove admin api-key flow from frontend/admin routes
|
2026-03-30 21:39:43 +08:00 |
|
Chris
|
0e17997e66
|
feat(security): enforce admin allowlist guard on admin APIs and attach bearer for admin client
|
2026-03-30 21:25:57 +08:00 |
|
Chris
|
c4266b7da5
|
feat(keys): auto-generate entity keys and remove manual key input from admin create forms
|
2026-03-30 19:52:00 +08:00 |
|
Chris
|
f00b8cefaa
|
fix: enrich me profile via userinfo and add org-member management plan
|
2026-03-30 01:14:02 +08:00 |
|
Chris
|
8f06f75cca
|
feat: add username-password login flow via authentik token endpoint
|
2026-03-30 00:52:09 +08:00 |
|
Chris
|
cb8e72ccc7
|
feat: configure authentik member oidc and local dev token compatibility
|
2026-03-30 00:34:59 +08:00 |
|
Chris
|
2b81fd01c3
|
feat: add authentik jwt verification and me endpoints
|
2026-03-29 23:06:19 +08:00 |
|
Chris
|
3ca207d24a
|
feat: bootstrap backend MVP and architecture docs
|
2026-03-29 23:01:34 +08:00 |
|