LeoVasanko/passkey-auth
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
150 Commits 1 Branch 6 Tags
main
Commit Graph

16 Commits

Author SHA1 Message Date
Leo Vasanko
bfb11cc20f A major refactoring for more consistent and stricter flows. 
- Force using the dedicated authentication site configured via auth-host
- Stricter host validation
- Using the restricted app consistently for all access control (instead of the old loginview).
 2025-10-04 15:55:43 -06:00
Leo Vasanko
591ea626bf Add host-based authentication, UTC timestamps, session management, and secure cookies; fix styling issues; refactor to remove module; update database schema for sessions and reset tokens. 2025-10-03 18:31:54 -06:00
Leo Vasanko
bb35e57ba4 Fix reset link logic to include /auth when no configured auth-host. 2025-10-02 15:57:20 -06:00
Leo Vasanko
5d8304bbd9 Refactor user-profile, restricted access and reset token registration as separate apps so the frontend does not need to guess which context it is running in. 
Support user-navigable URLs at / as well as /auth/, allowing for a dedicated authentication site with pretty URLs.
 2025-10-02 15:44:48 -06:00
Leo Vasanko
fbfd0bbb47 Create registration links on the same host (subdomain) that is being used by the one who creates it. 2025-10-02 12:30:50 -06:00
Leo Vasanko
074daebd14 Fix matching bug 2025-09-02 18:22:21 -06:00
Leo Vasanko
bfc777fb56 Refactoring permissions checks. 2025-09-02 17:28:26 -06:00
Leo Vasanko
3cd6a59b26 Utility module for accessing frontend in backend code. 2025-09-02 16:06:10 -06:00
Leo Vasanko
37eaffff3f Renaming of users in registration, profile and admin app. 2025-09-01 18:13:01 -06:00
Leo Vasanko
2b03fa74cd Only allow safe characters in permission IDs 2025-08-30 19:10:00 -06:00
Leo Vasanko
cf138d90c5 Checkpoint, fixing reset token handling broken in earlier edits. 2025-08-06 09:55:14 -06:00
Leo Vasanko
c5e5fe23e3 Major cleanup and refactoring of the backend (frontend not fully updated). 2025-08-01 12:32:27 -06:00
Leo Vasanko
0cfa622bf1 Removal of JWT code, cleanup, using User dataclass rather than UserModel in APIs. 2025-07-27 23:44:26 -06:00
Leo Vasanko
dc0b0f4613 Database reworked simpler, JWTs replaced by sessions table and random tokens. Accessing Add device link is currently broken. 2025-07-14 17:30:16 -06:00
Leo Vasanko
225d7b7542 Refactoring reset and session tokens, currently broken. 2025-07-14 16:10:02 -06:00
Leo Vasanko
3567b7802b A lot of cleanup, restructuring project directory. 2025-07-14 12:11:29 -06:00