member/member-platform
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Commit Graph

  • 4fd81ffbf2 chore(directus): rename *_key to key and skip system key autogen master Chris 2026-04-04 17:24:54 +08:00
  • cf39ea2b0c chore(directus): switch ids to uuid and add key fields only Chris 2026-04-04 16:59:38 +08:00
  • 560f40ae8a chore(directus): convert ids to uuid and ensure *_key fields Chris 2026-04-04 16:55:09 +08:00
  • 838c0afc0b chore(directus): add users.user_key to base directus schema Chris 2026-04-04 16:51:23 +08:00
  • 0666b8683e chore(directus): add import schemas and key auto-generation sql Chris 2026-04-04 16:48:04 +08:00
  • 428b6292ea chore: bump frontend submodule Chris 2026-04-03 16:02:24 +08:00
  • cd7feec38a docs: update env workflow and role_code contracts Chris 2026-04-03 15:50:19 +08:00
  • 01a4580faf chore(scripts): add helper scripts for submodule push flow Chris 2026-04-03 15:04:32 +08:00
  • 649af715e2 docs: add workspace guardrails and submodule workflow Chris 2026-04-03 14:51:14 +08:00
  • 3571cdf2ee docs(env): standardize development and production env workflow Chris 2026-04-03 14:43:40 +08:00
  • 099ed03be7 chore: bump backend submodule Chris 2026-04-03 06:03:17 +08:00
  • f62ed97e2b chore: bump backend submodule for env example Chris 2026-04-03 05:57:13 +08:00
  • 760902f53c chore: bump frontend submodule to latest Chris 2026-04-03 05:40:12 +08:00
  • 998771bc11 chore: bump frontend submodule for oidc url guard Chris 2026-04-03 05:27:25 +08:00
  • 576ba9b2fe chore: bump frontend submodule for dev env Chris 2026-04-03 05:10:26 +08:00
  • b7b312e69a fix: remove invalid condition from compose example Chris 2026-04-03 05:04:00 +08:00
  • 865be73d06 update Chris 2026-04-03 05:02:41 +08:00
  • ed4b22a564 chore: bump backend submodule after rebase Chris 2026-04-03 04:59:40 +08:00
  • 2da43cf027 update Chris 2026-04-03 04:57:16 +08:00
  • 200c86c924 chore: bump backend submodule for env selection Chris 2026-04-03 04:51:12 +08:00
  • e8058d1240 Use single backend env template in deploy docs Chris 2026-04-03 04:33:47 +08:00
  • 6dabc2eab6 Document single backend .env workflow Chris 2026-04-03 04:31:59 +08:00
  • 8609d61f82 Use example compose and ignore local deploy env files Chris 2026-04-03 04:26:05 +08:00
  • f01a228026 Add docker-compose template for VPS deployment Chris 2026-04-03 04:18:46 +08:00
  • a6e5fbbb24 Bump backend submodule to latest ignore rules Chris 2026-04-03 04:01:15 +08:00
  • 21dc3ea56f Update backend submodule after gitignore hardening Chris 2026-04-03 03:58:07 +08:00
  • fdf17ecf85 Update docs and submodule after backend cleanup Chris 2026-04-03 03:55:04 +08:00
  • a45aa5a6c7 Add VPS deployment runbook Chris 2026-04-03 03:40:10 +08:00
  • c394e9153e Rename integration workspace to member-platform Chris 2026-04-03 03:32:22 +08:00
  • 0e248db1bf Update submodule URLs to Gitea remotes Chris 2026-04-03 03:28:03 +08:00
  • 1d2a57fada Split frontend and backend into separate submodule repos Chris 2026-04-03 03:19:48 +08:00
  • 528b988207 Switch backend Docker image to Alpine multi-stage Chris 2026-04-03 03:12:19 +08:00
  • 40d9fb8dcf Add production Dockerfile for backend deployment Chris 2026-04-03 03:11:28 +08:00
  • fc81696abf Switch access control from groups to realm roles Chris 2026-04-03 03:03:43 +08:00
  • daa21e81a9 Remove duplicate internal permissions snapshot API Chris 2026-04-03 02:46:55 +08:00
  • 955019e8d7 Add Redis-backed cache backend with env switch Chris 2026-04-03 02:38:54 +08:00
  • ed413ce39d Add in-memory read cache with CUD-based invalidation Chris 2026-04-03 02:32:38 +08:00
  • fa624127c8 Speed up auth verification with JWKS/admin token caching Chris 2026-04-03 02:20:54 +08:00
  • 418a7b7099 Sync site-role assignments to Keycloak group role mappings Chris 2026-04-03 02:14:01 +08:00
  • 223edd49b5 fix: respect admin site list limit when loading role site options Chris 2026-04-03 01:58:08 +08:00
  • d59407d04c feat: allow assigning sites directly from role page Chris 2026-04-03 01:56:22 +08:00
  • 2004203758 chore: silence introspection fallback warning noise Chris 2026-04-03 01:53:35 +08:00
  • 1ff0589b29 refactor: simplify schema names and remove provider id columns Chris 2026-04-03 01:49:36 +08:00
  • 6e43a3b2c8 feat: add global manual sync button in admin header Chris 2026-04-03 01:25:34 +08:00
  • 21167659f8 perf: disable read-time sync and keep provider sync manual Chris 2026-04-03 01:23:42 +08:00
  • f351fe6454 fix: sync role CRUD with provider client roles Chris 2026-04-03 01:17:13 +08:00
  • 6adca8c229 fix: add provider column migration script for existing db Chris 2026-04-03 01:10:13 +08:00
  • ef27162903 refactor: rename idp fields to provider naming Chris 2026-04-03 01:05:01 +08:00
  • 467f2b4867 refactor(idp-groups): use display name as keycloak group name Chris 2026-04-03 00:53:31 +08:00
  • 7660c662a5 feat(sync): keycloak as source-of-truth with auto catalog sync and token refresh Chris 2026-04-03 00:46:46 +08:00
  • 7986160d9e fix(auth): resolve admin groups via keycloak admin API when token lacks groups Chris 2026-04-03 00:28:32 +08:00
  • 6ae907d649 fix(auth): accept keycloak group path variants for admin guard Chris 2026-04-03 00:24:32 +08:00
  • 2ce9630a5e fix(backend): postpone annotations to avoid list() type shadowing crash Chris 2026-04-03 00:22:00 +08:00
  • 5837582c0f feat(frontend): migrate admin UI to role-site model and clean legacy pages Chris 2026-04-03 00:18:39 +08:00
  • 1e1d913103 refactor: rebuild backend around role-site authorization model Chris 2026-04-02 23:58:13 +08:00
  • e2dd3ce106 docs: add clickable links for file paths in markdown Chris 2026-04-02 23:38:17 +08:00
  • 16bbfdba24 docs: rebuild architecture and taskplans for role-site model Chris 2026-04-02 23:35:05 +08:00
  • 7cdf2b5a51 refactor(keycloak): remove authentik naming and switch to keycloak-only paths Chris 2026-04-01 02:01:41 +08:00
  • a9c7cb5f39 fix(auth): relax keycloak audience check and auto-redirect logged-in user Chris 2026-04-01 01:48:06 +08:00
  • f0fd5d6e68 fix(auth-callback): redirect to login after successful oidc callback Chris 2026-04-01 01:46:33 +08:00
  • b0de6ad94a fix(oidc): add PKCE support for keycloak login flow Chris 2026-04-01 01:43:53 +08:00
  • a1eb7ef41b feat(login): simplify to single keycloak redirect button Chris 2026-04-01 01:35:46 +08:00
  • 07195e7efc fix(login): unify auth entry to single keycloak login page Chris 2026-04-01 01:33:27 +08:00
  • dc2811ec61 chore(env): use member-frontend oidc client and keep member-backend admin client Chris 2026-04-01 01:30:44 +08:00
  • 0b61975c81 chore(env): configure keycloak master client for local backend Chris 2026-04-01 01:20:46 +08:00
  • 34ba57034d feat(idp): add keycloak-first support with authentik fallback Chris 2026-04-01 00:41:38 +08:00
  • febfafc55c fix(login): switch frontend account login to oidc flow Chris 2026-03-31 23:43:57 +08:00
  • 80a571d227 feat(login): support both password and Google SSO entry on login page Chris 2026-03-31 23:18:28 +08:00
  • fe6453f6f8 refactor(identity): rename authentik_sub to user_sub and authentik_user_id to idp_user_id Chris 2026-03-31 22:32:48 +08:00
  • 316d17027b docs(api): add internal API contract and expose response schemas in swagger Chris 2026-03-31 22:20:24 +08:00
  • 15da8a5341 fix(internal): return correct system_key in modules list Chris 2026-03-31 22:02:56 +08:00
  • 671e27447b refactor(internal): switch auth to api-client headers Chris 2026-03-31 21:09:18 +08:00
  • 322db6ee1a fix(member): delete authentik user when removing member Chris 2026-03-31 21:01:15 +08:00
  • f6f86d4bfb feat(admin): add delete APIs and UI actions for all admin resources Chris 2026-03-31 20:58:20 +08:00
  • c4492a3072 fix(api-clients): fallback api-key hashing without argon2; show site/module parent display names Chris 2026-03-31 20:35:04 +08:00
  • 1d9bdb7daa feat(admin): add api client management UI and backend CRUD/rotate endpoints Chris 2026-03-30 23:28:27 +08:00
  • ccb99683b8 feat(members): split username/display_name, sync updates to authentik, add password reset API and refresh docs Chris 2026-03-30 22:15:41 +08:00
  • e1a6bbd844 refactor(auth): use group-only admin access and remove admin api-key flow from frontend/admin routes Chris 2026-03-30 21:39:43 +08:00
  • 15eee2fc9a feat(security): enforce admin allowlist guard on admin APIs and attach bearer for admin client Chris 2026-03-30 21:25:57 +08:00
  • fb515c6c44 fix(module-key): make module keys standalone MD format with system_key relation Chris 2026-03-30 20:02:17 +08:00
  • b4c02835bd feat(keys): auto-generate entity keys and remove manual key input from admin create forms Chris 2026-03-30 19:52:00 +08:00
  • 62776ac27e chore(db): rebuild init schema with drop-recreate and group-centric constraints Chris 2026-03-30 19:42:05 +08:00
  • ea5285501a feat(admin): implement group-centric relations and system/module/company linkage views Chris 2026-03-30 19:38:49 +08:00
  • 37a69081e3 docs: rebuild documentation set for new architecture and add DB schema guide Chris 2026-03-30 19:21:54 +08:00
  • f884f1043d feat(flow): unify member-group-permission admin workflow and docs Chris 2026-03-30 03:54:22 +08:00
  • 31fff92e19 feat(flow): auto-resolve authentik sub and improve admin dropdown UX Chris 2026-03-30 03:33:50 +08:00
  • f85d3de5c5 feat(admin): add edit flows for all catalogs and member authentik sync Chris 2026-03-30 03:25:53 +08:00
  • 2dd70dceff fix(auth): correct userinfo endpoint fallback for authentik profile enrichment Chris 2026-03-30 03:13:29 +08:00
  • 94441a4037 refactor(frontend): remove manual admin credential cards from permission pages Chris 2026-03-30 03:06:31 +08:00
  • 76fd22826b fix(frontend): auto-attach admin api keys and normalize admin list payloads Chris 2026-03-30 03:03:17 +08:00
  • f33134ff53 refactor: Redesign navbar to single-row tab layout Chris 2026-03-30 02:58:38 +08:00
  • c85109e09b refactor: Replace admin dropdown with flat tab navigation Chris 2026-03-30 02:56:19 +08:00
  • 4bb6ecf887 refactor: Fix UI/UX issues across admin pages Chris 2026-03-30 02:53:54 +08:00
  • c3f6293c83 fix(frontend): validate oidc state in callback flow Chris 2026-03-30 02:47:16 +08:00
  • 70b5f34a74 fix(frontend): harden auth routing and callback error handling Chris 2026-03-30 02:46:35 +08:00
  • 23baceed71 docs: Update TASKPLAN_FRONTEND and FRONTEND_HANDOFF_SCHEMA_V2 - mark Schema v2 as complete Chris 2026-03-30 02:39:58 +08:00
  • c4b9789df7 Upgrade frontend to Schema V2: Admin management pages Chris 2026-03-30 02:37:46 +08:00
  • d79ed7c6fc fix: finalize unified schema and correct permission snapshot mapping Chris 2026-03-30 02:22:27 +08:00
  • 42f9124f77 chore: consolidate full database schema into single init_schema.sql Chris 2026-03-30 02:14:26 +08:00
  • f9ad9417ba refactor: align backend with company-site-member schema and system-level RBAC groups Chris 2026-03-30 01:59:50 +08:00