Skip to content

Commit

Permalink
Refactor/auth (#360)
Browse files Browse the repository at this point in the history 
* refactor: replace oslo/password

* refactor sessions

* refactor permission manager, type for actions

* refactor auth flows

* check token using id not token itself

* do not leak session token in /me

* fix happy path
  • Loading branch information
@flipvh
flipvh authored Jan 29, 2025
1 parent 2295fc0 commit dcfc4e1
Show file tree
Hide file tree
Showing 103 changed files with 2,430 additions and 5,845 deletions.
3 changes: 3 additions & 0 deletions backend/.env.example
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,6 +13,9 @@ UNSUBSCRIBE_TOKEN_SECRET=some_secret_token
# Secret for argon2id password (required)
ARGON_SECRET=argon_two_secret

# Secret for cookies (required)
COOKIE_SECRET=cookie_secret

# Remote system access IP (required) (for multiple IPs, separate by comma)
REMOTE_SYSTEM_ACCESS_IP=*

Expand Down
239 changes: 0 additions & 239 deletions backend/drizzle/0000_lowly_husk.sql
View file

This file was deleted.

Loading

0 comments on commit dcfc4e1

Please sign in to comment.