ai-workspace-services/accounts
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,336 Commits 18 Branches 2 Tags 70 MiB
7aa99b43d8
Commit Graph

30 Commits

Author SHA1 Message Date
Haitao Pan
7aa99b43d8 feat: Dynamically set session cookie domain based on the public URL. 2026-02-07 02:23:53 +08:00
Haitao Pan
3b980a7ff2 chore: Update Next.js routes type definition import path to include . 2026-02-06 23:20:27 +08:00
Haitao Pan
56166f6fd3 feat: Extend VLESS node fallback logic to include demo users, use request host as an additional fallback, and normalize '*' as an empty host. 2026-02-06 22:59:46 +08:00
Haitao Pan
de66aec30e feat: Implement database session fallback for token validation in the authentication middleware. 2026-02-06 22:16:28 +08:00
Haitao Pan
51336af5b7 feat: Implement session store fallback for token validation in the authentication middleware. 2026-02-06 19:02:48 +08:00
Haitao Pan
17909d57d2 fix: sandbox binding + agent sandbox sync + uuid rotation 2026-02-06 18:06:20 +08:00
Haitao Pan
b6ab404206 fix: Remove duplicate route registration causing panic on startup. 2026-02-06 16:40:31 +08:00
Haitao Pan
1bfe4f1d53 fix: Robust DB connection retries and move sandbox routes to admin group. 2026-02-06 16:21:29 +08:00
Haitao Pan
4503b053f7 feat: Implement sandbox agent functionality with dedicated user, admin API, and agent-side user filtering. 2026-02-06 13:03:47 +08:00
Haitao Pan
fbe04d37b1 fix(agent-server): authenticate /v1/nodes via session tokens 2026-02-05 17:39:43 +08:00
Haitao Pan
4b4a2069b3 feat(agent): expose canonical /api/agent-server/v1/nodes 2026-02-05 16:52:10 +08:00
Haitao Pan
d849e3e6cc fix(admin): complete management APIs for console integration 2026-02-05 15:01:12 +08:00
Haitao Pan
bc2562b877 fix: move mfa/status endpoint outside auth middleware and implement persistent session storage 
- Moved /api/auth/mfa/status outside authProtected group to allow pre-login MFA checks
- Added session management to Store interface with CreateSession, GetSession, DeleteSession
- Implemented session persistence in both memoryStore and postgresStore
- Updated handler to use store-based sessions instead of in-memory map
- Added database schema for users, sessions, agents, and email_blacklist tables
- This fixes the 401 error when checking MFA status before login
 2026-02-05 09:37:04 +08:00
Haitao Pan
838b1a1c0f fix: enforce demo no-mfa login and expose proxy uuid in session 2026-02-04 14:59:19 +08:00
Haitao Pan
982a091b33 feat: add internal public overview endpoint for homepage stats 2026-02-04 14:15:27 +08:00
Haitao Pan
40bb141322 feat: enforce root account and introduce RBAC policy scaffolding 2026-02-04 13:36:24 +08:00
Haitao Pan
09eb26da25 feat: add read-only Demo account with hourly UUID rotation 2026-02-04 12:37:31 +08:00
Haitao Pan
a9f669e7cd feat: Enforce OAuth email verification and update user verification status during login. 2026-02-02 21:07:10 +08:00
Haitao Pan
08a92ba2d0 feat: Add multiple context and editor hooks to ChatInput component. 2026-02-02 21:02:32 +08:00
Haitao Pan
8afd3e5b8f fix: resolve build errors (undefined generateRandomUUID, shadowed auth package) and update .gitignore 2026-02-02 20:29:10 +08:00
Haitao Pan
693889f366 feat: implement user management features (pause, delete, blacklist, renew uuid) 2026-02-02 20:19:06 +08:00
Haitao Pan
3b8195fd08 feat: support internal agent auth token and update agent server API path 2026-01-31 17:42:05 +08:00
Haitao Pan
ccb0bada22 feat: Add endpoint to list agent VLESS nodes based on the server's public URL and introduce a configuration option for the public URL. 2026-01-31 13:52:31 +08:00
Haitao Pan
400c56e72d feat(auth): support shared session tokens and device/node pairing integration 2026-01-30 23:12:01 +08:00
Haitao Pan
5bf93d1d3f feat: add user management APIs for management page 
- Add ListUsers to Store interface and implementations
- Add user listing API endpoint (GET /api/users)
- Add role management endpoints (POST/DELETE /api/auth/admin/users/:userId/role)
- Add GeneratePublicToken to TokenService for OAuth callback
- Add CancelSubscription to Store interface
- Update go.mod with oauth2 dependencies
 2026-01-30 08:59:55 +08:00
Haitao Pan
6ba56841b5 feat: add OAuth2 authentication support with new API endpoints, configuration, and identity storage. 2026-01-30 08:46:24 +08:00
Haitao Pan
fbe107c13e feat(api): reuse verification code within TTL and regenerate after 10m 2026-01-25 14:17:30 +08:00
Haitao Pan
9ca661c84d fix(api): allow registration with code without prior verification call 2026-01-25 13:55:39 +08:00
Haitao Pan
c7805f13a5 refactor: move NextAuth configuration to a dedicated server file. 2026-01-25 10:12:12 +08:00
Haitao Pan
ee6e1a6363 feat: move account service to repo root 
# Conflicts:
#	account/Makefile
#	account/go.mod
#	docs/account-admin-settings.md
#	docs/account-svc-plus.md
 2026-01-16 16:15:23 +08:00