This website requires JavaScript.
9587ef4941
refactor: require an api name to be provided and skip if not matched
Derrick Hammer
2024-03-20 17:12:31 -0400
4a3028f61a
fix: cookies sent to us don't include the expiry time, so we need to parse from thr jwt echo it.
Derrick Hammer
2024-03-20 14:56:18 -0400
da19a2e287
fix: use StatusUnauthorized
Derrick Hammer
2024-03-20 14:44:28 -0400
52a1f18c60
fix: if claim is empty and ExpiredAllowed on, abort early and pass through
Derrick Hammer
2024-03-20 14:41:54 -0400
7df6bb245b
fix: return in wrong spot
Derrick Hammer
2024-03-20 14:34:48 -0400
cfce7348d4
fix: move error conditional outside if
Derrick Hammer
2024-03-20 14:30:03 -0400
053a55c1f3
fix: invert check
Derrick Hammer
2024-03-20 14:28:46 -0400
6c0ae8c0e6
refactor: if unauthorized is true, audList may be nil, and we may have to manually parse out the aud unverified to test
Derrick Hammer
2024-03-20 14:27:02 -0400
9e170bae0d
fix: capture aud in JWTVerifyToken
Derrick Hammer
2024-03-20 14:13:59 -0400
7616d9f7c9
refactor: set ExpiredAllowed on loginAuthMw2fa
Derrick Hammer
2024-03-20 14:11:21 -0400
2528fd0afe
refactor: add optionExpiredAllowed to AuthMiddlewareOptions, add jwtPurposeEqual helper, don't error if expired with ExpiredAllowed and the purposes are different
Derrick Hammer
2024-03-20 14:09:41 -0400
bee80a9981
Revert "refactor: if the token doesn't match our purpose only error if EmptyAllowed is off"
Derrick Hammer
2024-03-20 13:55:35 -0400
b1fcc7f7ae
refactor: if the token doesn't match our purpose only error if EmptyAllowed is off
Derrick Hammer
2024-03-20 13:52:25 -0400
b6c92a6348
fix: check for a mysql.MySQLError and error no 1062 explicitly
Derrick Hammer
2024-03-20 13:39:13 -0400
f9c834752f
fix: update AllowedHeaders and add Content-Type
Derrick Hammer
2024-03-19 18:25:20 -0400
30aac94468
fix: update AllowedHeaders and add Authorization
Derrick Hammer
2024-03-19 17:23:35 -0400
79425b76fc
fix: update AllowedMethods
Derrick Hammer
2024-03-19 15:47:54 -0400
85738c1065
refactor: replace AllowedOrigins with AllowOriginFunc
Derrick Hammer
2024-03-19 15:45:02 -0400
7ed63d94cc
refactor: add proxy middleware to add routes
Derrick Hammer
2024-03-19 15:40:03 -0400
c667c9509c
refactor: update cors options handling for S5
Derrick Hammer
2024-03-19 15:37:38 -0400
4988368b7c
fix: add explicit options routes for all API methods
Derrick Hammer
2024-03-19 15:32:40 -0400
b55c1f7d48
refactor: set MaxAge
Derrick Hammer
2024-03-19 11:43:11 -0400
ce93591ff8
Revert "refactor: change ClearAuthCookie to set value to deleted"
Derrick Hammer
2024-03-19 11:40:34 -0400
6ac37cfe65
refactor: add no cache headers
Derrick Hammer
2024-03-19 11:05:51 -0400
ac61279081
refactor: change ClearAuthCookie to set value to deleted
Derrick Hammer
2024-03-19 10:59:38 -0400
d1bbe7c158
refactor: change ClearAuthCookie to set expires date to epoch
Derrick Hammer
2024-03-19 10:57:49 -0400
aff371a844
feat: add update password api route
Derrick Hammer
2024-03-19 10:04:27 -0400
3473551f6c
fix: ensure exists check only matches if it is a different account id
Derrick Hammer
2024-03-19 09:48:45 -0400
080bef354d
refactor: check if the email is the same and return a new error for it
Derrick Hammer
2024-03-19 09:44:44 -0400
1d60cbf532
fix: cast to user, no pointer
Derrick Hammer
2024-03-19 09:38:05 -0400
3b3faaa1e6
fix: use tx.Statement.Dest
Derrick Hammer
2024-03-19 09:36:50 -0400
9ea77fb5c3
fix: check to ensure error is something other than ErrRecordNotFound, or that exists is true
Derrick Hammer
2024-03-19 09:29:29 -0400
9e52d35d2f
Revert "fix: use AccountExists"
Derrick Hammer
2024-03-19 09:26:36 -0400
0bbb89e02c
fix: use AccountExists
Derrick Hammer
2024-03-19 09:24:19 -0400
ebb19df217
fix: update email endpoint needs auth mw
Derrick Hammer
2024-03-19 09:09:25 -0400
bf6264b01d
fix: malformed routes
Derrick Hammer
2024-03-19 07:53:24 -0400
080a4a1a85
feat: add /api/account/update-email route
Derrick Hammer
2024-03-19 07:48:04 -0400
9bfdef1519
feat: add UpdateAccountEmail
Derrick Hammer
2024-03-19 07:46:58 -0400
fddc64799e
refactor: put some account endpoints under account instead of auth
Derrick Hammer
2024-03-19 07:41:53 -0400
4391e9fc31
fix: define new cookie in EchoAuthCookie but use the existing cookies values
Derrick Hammer
2024-03-19 05:02:48 -0400
b2b6102216
fix: add Content-Type to tus cors allowed headers
Derrick Hammer
2024-03-18 18:13:24 -0400
2067c68a72
fix: ctx's not property nested
Derrick Hammer
2024-03-18 17:29:49 -0400
d1c5bde5c1
refactor: add token to ping response message
Derrick Hammer
2024-03-18 17:19:52 -0400
26a6bda053
feat: add GetAuthTokenFromContext
Derrick Hammer
2024-03-18 17:18:26 -0400
93105fe5af
refactor: add auth token to the request context
Derrick Hammer
2024-03-18 17:17:52 -0400
040c662826
refactor: echo the auth cookie back if any exist
Derrick Hammer
2024-03-18 17:03:17 -0400
66f73d1a53
feat: add EchoAuthCookie
Derrick Hammer
2024-03-18 17:02:16 -0400
48dc1b9be0
Revert "fix: remove Secure property"
Derrick Hammer
2024-03-18 16:54:42 -0400
9e5d996f20
fix: remove Secure property
Derrick Hammer
2024-03-18 16:40:29 -0400
649e0e0011
Revert "fix: remove Secure property"
Derrick Hammer
2024-03-18 16:40:18 -0400
044604d863
fix: remove Secure property
Derrick Hammer
2024-03-18 16:31:42 -0400
fd53b98633
fix: allow Upload-Metadata in cors
Derrick Hammer
2024-03-18 15:53:40 -0400
5b8a7f79f0
fix: use AllowOriginFunc in tus
Derrick Hammer
2024-03-18 15:45:29 -0400
228cabd83b
fix: cid needs to be lowercase
Derrick Hammer
2024-03-18 14:26:45 -0400
99d47a4d9c
fix: need to enable AllowCredentials
Derrick Hammer
2024-03-18 14:19:34 -0400
6b51e7196c
fix: need to whitelist Authorization and Content-Type headers
Derrick Hammer
2024-03-18 14:16:04 -0400
dcab0b46cd
fix: upload cors does not support wildcard methods
Derrick Hammer
2024-03-18 14:13:40 -0400
65278cb046
fix: add options routes for basic upload
Derrick Hammer
2024-03-18 14:06:58 -0400
455b793db6
dep: update dashboard
Derrick Hammer
2024-03-18 13:51:29 -0400
3b01c8642d
refactor: add cors mw for account
Derrick Hammer
2024-03-18 13:49:02 -0400
c68dc51732
refactor: add cors mw for uploads
Derrick Hammer
2024-03-18 13:39:50 -0400
e864bcb098
feat: add upload limit endpoint
Derrick Hammer
2024-03-17 11:10:12 -0400
e73ab26ebf
feat: add logout endpoint
Derrick Hammer
2024-03-17 09:27:57 -0400
0e18f695cf
fix: name needs to be AuthTokenName, actually use jwt
Derrick Hammer
2024-03-17 09:22:47 -0400
fd75ec3f6a
fix: bad alias for authCookieName
Derrick Hammer
2024-03-17 09:19:33 -0400
9306051812
fix: use account.SetAuthCookie
Derrick Hammer
2024-03-17 09:18:31 -0400
d893216831
fix: SetAuthCookie needs the jwt
Derrick Hammer
2024-03-17 09:18:01 -0400
675a583422
refactor: update SetAuthCookie to use routeableApi.AuthTokenName()
Derrick Hammer
2024-03-17 09:15:47 -0400
5861e95fb5
refactor: update use of SetAuthCookie
Derrick Hammer
2024-03-17 09:15:24 -0400
e7393085b4
refactor: implement new methods for RoutableAPI
Derrick Hammer
2024-03-17 09:13:20 -0400
4bd2b028b7
chore: remove local setAuthCookie
Derrick Hammer
2024-03-17 09:10:14 -0400
107118febc
refactor: switch to account.SetAuthCookie
Derrick Hammer
2024-03-17 09:09:57 -0400
244aa89d71
refactor: use jape.Context
Derrick Hammer
2024-03-17 09:09:29 -0400
9a899317c1
refactor: implement Domain and AuthTokenName
Derrick Hammer
2024-03-17 09:02:48 -0400
b4b211d003
feat: add BuildSubdomain helper
Derrick Hammer
2024-03-17 09:01:28 -0400
2a8c036dc6
refactor: set auth cookie for every api, and optionally pass a specific api name to only set instead
Derrick Hammer
2024-03-17 08:59:34 -0400
325a368dea
refactor: add AuthTokenName to RoutableAPI
Derrick Hammer
2024-03-17 08:53:56 -0400
5223a44790
refactor: move DEFAULT_AUTH_COOKIE_NAME to account
Derrick Hammer
2024-03-17 08:51:59 -0400
33e644f5c7
refactor: add Domain method to RoutableAPI
Derrick Hammer
2024-03-17 08:51:23 -0400
3dfdd2d2f4
refactor: add GetAllAPIs
Derrick Hammer
2024-03-17 08:42:53 -0400
3e48593675
refactor: register api after init
Derrick Hammer
2024-03-17 08:42:25 -0400
ae37a186a9
feat: add dedicated registry for api objects
Derrick Hammer
2024-03-17 08:41:40 -0400
a85ced7c62
refactor: change Registry name to EntryRegistry
Derrick Hammer
2024-03-17 08:36:32 -0400
61012ae394
fix: change property name
Derrick Hammer
2024-03-17 08:33:24 -0400
1bd4527300
fix: use middleware.DEFAULT_AUTH_COOKIE_NAME for authCookieName
Derrick Hammer
2024-03-17 08:30:55 -0400
6c58f6bd6c
refactor: use SetAuthCookie and set both DEFAULT_AUTH_COOKIE_NAME and s5 authCookieName
Derrick Hammer
2024-03-17 08:17:56 -0400
51c7211c39
feat: add SetAuthCookie helper
Derrick Hammer
2024-03-17 08:15:27 -0400
b03e6815e2
refactor: fall back and check for DEFAULT_AUTH_COOKIE_NAME
Derrick Hammer
2024-03-17 08:13:50 -0400
193871f083
fix: error if user is nil
Derrick Hammer
2024-03-16 21:31:09 -0400
3dc5c72840
fix: auth cookie needs to be at the root path
Derrick Hammer
2024-03-16 21:14:43 -0400
1ca8d78c8e
fix: need to use develop branch for dashboard submodule
Derrick Hammer
2024-03-16 21:07:57 -0400
57a455a17e
refactor: need to handle get requests as nested jape routers with special routing checks to ensure virtual client side app routing returns the static bundle
Derrick Hammer
2024-03-16 21:05:42 -0400
5431cac73d
feat: initial docker file
Derrick Hammer
2024-03-16 18:57:01 -0400
41edceb11c
chore: tidy
Derrick Hammer
2024-03-16 18:16:14 -0400
fd6c3e8604
fix: wrong embed path
Derrick Hammer
2024-03-16 17:46:36 -0400
cc1efd5d85
feat: add dashboard as a submodule and register embed and routing in account api
Derrick Hammer
2024-03-16 17:13:29 -0400
f6b28b0ee0
chore: temp disable email verification for testing
Derrick Hammer
2024-03-16 15:43:52 -0400
971c72ada9
fix: add 401 status code
Derrick Hammer
2024-03-16 11:37:42 -0400
f558d87b36
fix: update /s5/account/pins response
Derrick Hammer
2024-03-16 11:36:38 -0400
ccae147398
feat: implement a basic account pins json api without paging
Derrick Hammer
2024-03-16 11:14:06 -0400
Derrick Hammer