Chris
|
fc81696abf
|
Switch access control from groups to realm roles
|
2026-04-03 03:03:43 +08:00 |
|
Chris
|
955019e8d7
|
Add Redis-backed cache backend with env switch
|
2026-04-03 02:38:54 +08:00 |
|
Chris
|
7cdf2b5a51
|
refactor(keycloak): remove authentik naming and switch to keycloak-only paths
|
2026-04-01 02:01:41 +08:00 |
|
Chris
|
a9c7cb5f39
|
fix(auth): relax keycloak audience check and auto-redirect logged-in user
|
2026-04-01 01:48:06 +08:00 |
|
Chris
|
34ba57034d
|
feat(idp): add keycloak-first support with authentik fallback
|
2026-04-01 00:41:38 +08:00 |
|
Chris
|
e1a6bbd844
|
refactor(auth): use group-only admin access and remove admin api-key flow from frontend/admin routes
|
2026-03-30 21:39:43 +08:00 |
|
Chris
|
15eee2fc9a
|
feat(security): enforce admin allowlist guard on admin APIs and attach bearer for admin client
|
2026-03-30 21:25:57 +08:00 |
|
Chris
|
b4c02835bd
|
feat(keys): auto-generate entity keys and remove manual key input from admin create forms
|
2026-03-30 19:52:00 +08:00 |
|
Chris
|
c6cb9d6818
|
fix: enrich me profile via userinfo and add org-member management plan
|
2026-03-30 01:14:02 +08:00 |
|
Chris
|
ad6d16c97e
|
feat: add username-password login flow via authentik token endpoint
|
2026-03-30 00:52:09 +08:00 |
|
Chris
|
ddaaadfe5b
|
feat: configure authentik member oidc and local dev token compatibility
|
2026-03-30 00:34:59 +08:00 |
|
Chris
|
5790878c87
|
feat: add authentik jwt verification and me endpoints
|
2026-03-29 23:06:19 +08:00 |
|
Chris
|
e9717d5214
|
feat: bootstrap backend MVP and architecture docs
|
2026-03-29 23:01:34 +08:00 |
|