kevin/baron-sso
1
0
Fork 0
forked from baron/baron-sso
Code Pull Requests Activity
946 Commits 14 Branches 0 Tags
85d3f4099dc2b03d67d75f5950dca82dc29381ca
Commit Graph

117 Commits

Author SHA1 Message Date
chan
4293013d4f chore(i18n): sync adminfront locales with new keys 
- Adminfront 화면에 표시될 한국어/영어 문구(테넌트 검색, 총 n개 로그 등) 추가
 2026-04-10 14:49:19 +09:00
chan
5a84e9f6cc Merge branch 'dev' into fix/rebac-env-sync-issue 2026-04-10 13:52:07 +09:00
chan
5211842d47 조직도 기능 추가 2026-04-10 11:38:47 +09:00
chan
332ac9c0d8 feat: dynamic frontend tenant dropdown 2026-04-06 16:56:33 +09:00
kyy
1b8dc2c4ab dev 브런치 병합 후 code check 2026-04-06 16:03:49 +09:00
kyy
a2f2b2dd71 사용자 활성 세션 조회·종료 API 추가 2026-04-06 15:02:41 +09:00
chan
583755c189 fix: improve keto sync reliability and initial rebac permissions for super admin 2026-04-06 10:10:27 +09:00
chan
b582c82c6f feat: implement multi-identifier architecture (Issue #496) 
- Database: Add user_login_ids table for 1:N identifier mapping and remove legacy login_id column
- Kratos: Update identity schema to use custom_login_ids array instead of a single id trait
- Backend: Implement syncCustomLoginIDs to collect isLoginId fields across tenant schemas
- Backend: Add backtracking logic to auto-assign session tenant based on used login identifier
- Backend: Add 409 Conflict exception handling for Create/Update operations
- AdminFront: Refactor UserDetailPage to a tabbed grid layout (Info, Tenants, Security)
- AdminFront: Show '로그인 ID' badge on tenant schema fields used for authentication
- UserFront: Remove legacy optional 'Login ID' input from signup flow
- Tests: Add multi-identifier repository tests and update handler tests
 2026-04-02 16:07:33 +09:00
Lectom C Han
71a006cd7b fix(headless-login): honor public base url for audience checks 
- resolve headless audience against BACKEND_PUBLIC_URL first
- keep forwarded header support for https absolute audiences
- add regression tests for https success and http mismatch rejection
- write BACKEND_PUBLIC_URL into staging workflow env generation
 2026-04-01 21:05:41 +09:00
Lectom C Han
4b0fbdde98 레포 업데이트 2026-04-01 20:32:09 +09:00
Lectom C Han
9facd24a00 feat(headless-login): add jwks cache visibility and refresh flow 
- replace inline headless jwks support with jwksUri-only validation
- add cached jwks refresh worker, manual refresh/revoke endpoints, and parsed key summaries
- expose allowed algorithms and key previews in DevFront with regression coverage
 2026-04-01 18:33:22 +09:00
kyy
68114eea66 비밀번호 재설정 중복 완료 요청 문제 수정 2026-03-31 11:51:21 +09:00
Lectom C Han
b4342b355f feat(auth): add trusted rp headless login flows 2026-03-30 21:46:15 +09:00
chan
75cc6737bd feat: add robust login ID collision prevention and UI validation (#440) 
- Add `ValidateLoginID` to enforce ID collision and security rules (prevents phone number collision, email format usage, and reserved words).
- Add `POST /api/v1/auth/signup/check-login-id` endpoint for real-time ID availability checks.
- Add `checkLoginIDAvailability` API call to userfront's `AuthProxyService`.
- Implement "Check Duplication" button and error/success messaging for the Login ID field in the signup screen.
- Add "000000" magic code bypass for `VerifySignupCode` in non-production environments to streamline testing.
 2026-03-27 11:19:28 +09:00
chan
a4f283e4e6 #445 #430 #426 #427 2026-03-24 14:22:05 +09:00
kyy
07f4c1258c 테넌트 목록 조회 API 추가 2026-03-19 17:28:32 +09:00
chan
5034785582 fix(backend): fix CSV export authentication by moving role validation inside the handler 2026-03-04 16:10:52 +09:00
chan
9720b77898 feat: implement user data CSV export with dynamic metadata columns 2026-03-04 15:54:11 +09:00
chan
a5102d9b25 feat: implement bulk user actions and organization tree search with auto-expansion 2026-03-04 15:43:00 +09:00
chan
a973cd746b feat: automatically create default user groups upon tenant registration/approval 2026-03-04 14:16:43 +09:00
chan
7c28bd4867 feat: implement CSV bulk user upload functionality 2026-03-04 11:26:37 +09:00
chan
d7071084b7 Merge commit 'f9e5171eb8f38fde9e3e67deb400c846b57fd5e6' into feature/af-is309 2026-03-03 17:23:22 +09:00
chan
badaaa0d1b 테넌트 도메인 동작 확인 2026-03-03 15:49:50 +09:00
chan
5423f920b7 feat(backend): implement dynamic multi-tenancy routing and CORS 2026-03-03 15:27:05 +09:00
chan
a6e7f1253c 테넌트 관리자(Tenant Admin)의 본인 소유 테넌트 목록 조회 및 관리 기능 개선 2026-03-03 14:33:58 +09:00
kyy
20c97843c3 클라이언트 대시보드 통계 실지표 연동 및 백엔드 API 구현 2026-03-03 14:06:27 +09:00
chan
86ef9c6f60 테넌트 소유자, 관리자 분리 2026-03-03 12:38:27 +09:00
kyy
914b1b0d49 DevFront 감사로그 조회 API 추가와 액션 필터링 및 테스트 보강 2026-02-27 17:50:53 +09:00
chan
77af59b7a8 Merge commit 'ac778f836fb78550dce8088a567dc8bf5ffb8d2e' into feature/adminfront 2026-02-27 12:41:01 +09:00
chan
ca45a14bae 테넌트 목록 및 조직 계층 구조 개선 2026-02-27 10:29:15 +09:00
Lectom C Han
8a074f16e7 merge feat/304-userfront-wasm-e2e into dev 2026-02-24 15:40:51 +09:00
Lectom C Han
aeb418fb9f feat: add env-aware client log policy and const lint fixes 2026-02-24 15:38:55 +09:00
chan
b2f0ea48e5 빌드 오류 해결 2026-02-24 13:03:29 +09:00
chan
c54dcccf49 Merge branch 'dev' into feat/org-chart-rebac 2026-02-24 12:42:02 +09:00
chan
4dc4e19c27 test code 수정 2026-02-23 16:50:26 +09:00
kyy
12b1bc4aca PRIVATE 클라이언트 권한 판정 로직 수정 2026-02-23 16:47:41 +09:00
kyy
2c42986a8b Private/PKCE 앱 유형 및 관리자 권한 정책 적용 2026-02-23 13:14:33 +09:00
chan
2ec2653bfb Ory Keto ReBAC Policy & Relation Tuple Architecture 2026-02-20 17:56:05 +09:00
kyy
ebd95166ae 관리자 계정 생성 및 로컬 DB 동기화 실행 순서 조정 2026-02-19 16:31:13 +09:00
chan
5cb713a009 가입 전략 수립 2026-02-19 15:10:36 +09:00
chan
ce703005e1 Merge branch 'feature/user-group' into dev 2026-02-13 14:22:32 +09:00
chan
594fd24adb feat: 구현: 유저 그룹 중심 권한 통합 및 미들웨어 정책 고도화 2026-02-13 14:16:13 +09:00
Lectom C Han
1bc2cfb507 feat(backend): backfill error code on legacy error responses 2026-02-13 11:20:15 +09:00
Lectom C Han
db71364e80 feat(i18n): apply ORY bypass whitelist policy and add error-code tests 2026-02-13 10:47:33 +09:00
Lectom C Han
c1645b2d4b i18n 광역 적용 2026-02-13 10:23:50 +09:00
chan
b9ad54d459 usergroup 2026-02-12 11:41:01 +09:00
chan
74884f6616 린트 적용 2026-02-12 10:39:47 +09:00
chan
68df43f3a8 feat: 테넌트/RP 관리자 할당 UI 및 ReBAC 권한 검증 도구 구현 #244 2026-02-11 13:26:26 +09:00
chan
afaac1781c feat: 테넌트 그룹 기반 권한 상속 고도화 및 개발자 포털 보안 강화 #239 2026-02-11 12:41:03 +09:00
chan
4ef7ab78e2 feat: 테넌트 그룹 관리 UI 및 상세 멤버십 관리 기능 구현 #239 2026-02-11 10:47:44 +09:00