Leo Vasanko
bfb11cc20f
A major refactoring for more consistent and stricter flows.
...
- Force using the dedicated authentication site configured via auth-host
- Stricter host validation
- Using the restricted app consistently for all access control (instead of the old loginview).
2025-10-04 15:55:43 -06:00
Leo Vasanko
591ea626bf
Add host-based authentication, UTC timestamps, session management, and secure cookies; fix styling issues; refactor to remove module; update database schema for sessions and reset tokens.
2025-10-03 18:31:54 -06:00
Leo Vasanko
f065a8294f
Update documentation.
2025-09-26 16:59:18 -06:00
Leo Vasanko
eaca57f625
Minor tuning of Caddy configuration and improved documentation.
2025-09-25 19:12:11 -06:00
Leo Vasanko
e514ae010d
Provide user info in Remote-* headers. Caddy configuration improved.
2025-09-25 18:12:40 -06:00
Leo Vasanko
dd20e7e7f8
Move forward auth under /admin/api/forward
2025-09-02 15:03:39 -06:00
Leo Vasanko
30ab73d625
Everything works. Minor adjustments on frontend and backend for the new API.
2025-08-02 07:41:42 -06:00
Leo Vasanko
dc0b0f4613
Database reworked simpler, JWTs replaced by sessions table and random tokens. Accessing Add device link is currently broken.
2025-07-14 17:30:16 -06:00
Leo Vasanko
225d7b7542
Refactoring reset and session tokens, currently broken.
2025-07-14 16:10:02 -06:00
