GitBucket
| 2026-06-07 |
Phase 2 session stability: refresh queue, Bearer fallback, proactive refresh
Eugene Sukhodolskiy
committed
6 hours ago
|
|---|---|
|
Update auth-fix-plan: mark Phase 1 tasks completed
Eugene Sukhodolskiy
committed
6 hours ago
|
|
|
Phase 1 auth security hotfixes: cookie-based session, bearer checks, router guard sync
...
Eugene Sukhodolskiy
committed
6 hours ago
|
|
|
Fix OAuth callback URL: insert access_token query string BEFORE hash fragment so Vue can read it via window.location.search
Eugene Sukhodolskiy
committed
7 hours ago
|
|
|
Fix OAuth callback: extract access_token in main.js before auth init, prevent 401 redirect loop in client.js
Eugene Sukhodolskiy
committed
7 hours ago
|
|
|
Fix OAuth callback: remove refreshToken() from init() to prevent 401 cascade that clears access_token
Eugene Sukhodolskiy
committed
7 hours ago
|
|
|
Add server/dist build to repository for zero-dependency prod deploy
Eugene Sukhodolskiy
committed
8 hours ago
|
|
|
Fix AppController and EventsHandlers to use __DIR__ instead of app()->root_folder() for prod compatibility
Eugene Sukhodolskiy
committed
8 hours ago
|
|
|
Integrate Vue webclient into server: serve SPA from /, remove proxy.php, update auth redirects
Eugene Sukhodolskiy
committed
8 hours ago
|
|
| 2026-06-06 |
Fix UserResolver: use ThinBuilder::insert() return value
...
Eugene Sukhodolskiy
committed
20 hours ago
|
|
|
|
|
Route all auth/login requests through proxy.php for cross-domain SPA
...
Eugene Sukhodolskiy
committed
21 hours ago
|
|
|
Add Bearer token persistence for cross-domain SPA auth
...
Eugene Sukhodolskiy
committed
21 hours ago
|
|
|
Add IP roaming reconciliation for active devices during network scan
...
Eugene Sukhodolskiy
committed
1 day ago
|
|
|
Set user-card-compact in drawer footer to full width
Eugene Sukhodolskiy
committed
1 day ago
|
|
|
Close drawer on logout via backdrop click
Eugene Sukhodolskiy
committed
1 day ago
|
|
|
Fix logout: session_start + destroy cookie + redirect to local /login instead of /auth/login
Eugene Sukhodolskiy
committed
1 day ago
|
|
|
Make user card avatar/name clickable link to gnexus-auth profile
Eugene Sukhodolskiy
committed
1 day ago
|
|
|
Remove border and padding from user-card-compact in drawer footer
Eugene Sukhodolskiy
committed
1 day ago
|
|
|
Add GnUserCard drawer footer; fix proxy.php cookie forwarding and /auth/ whitelist
Eugene Sukhodolskiy
committed
1 day ago
|
|
|
Fix auth session persistence: add credentials:include to fetch and session_start to auth flow
...
Eugene Sukhodolskiy
committed
1 day ago
|
|
|
Fix E_WARNING in redirect: add exit after header() to prevent further output
...
Eugene Sukhodolskiy
committed
1 day ago
|
|
|
Fix .env resolution: fallback to parent dir if SHServ/.env missing GAUTH_*
...
Eugene Sukhodolskiy
committed
1 day ago
|
|
|
Improve LoginPage design: centered card with brand, hint and clear auth button
...
Eugene Sukhodolskiy
committed
1 day ago
|
|
|
Add missing text_msgs aliases and dev proxy for auth endpoints
...
Eugene Sukhodolskiy
committed
1 day ago
|
|
|
|
|
|
Phase 4: Vue client auth store, Bearer token injection, router guards, login page
...
Eugene Sukhodolskiy
committed
1 day ago
|
|
|
Phase 2: Protect Areas, Scripts, Firmware REST API endpoints with permission checks
...
Eugene Sukhodolskiy
committed
1 day ago
|
|
|
Phase 2: Protect DevicesRESTAPIController endpoints with permission checks
...
Eugene Sukhodolskiy
committed
1 day ago
|
|
|
Update docs: guest is explicit authenticated role, no anonymous access
Eugene Sukhodolskiy
committed
1 day ago
|