AcadeNice/AcadeDoc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
992 commits 2 branches 0 tags 9.3 MiB
Commit graph

22 commits

Author SHA1 Message Date
Corentin
bcd861126f feat(rbac): R2.1 backend RBAC dynamique multi-roles avec catalogue + 5 roles seed + JWT enrichi 2026-05-07 22:26:21 +02:00
Corentin
07d0b66fda feat(auth): Bloc 4b — OIDC client Authentik via openid-client (active par OIDC_ENABLED env) 
Ajoute un flow d'authentification OIDC via Authentik (ou tout IdP conforme),
desactive par defaut. Le code est dormant tant que OIDC_ENABLED=true n'est
pas pose.

Server :
- apps/server/src/core/auth/oidc/oidc.module.ts (nouveau)
- apps/server/src/core/auth/oidc/oidc.service.ts (discovery + PKCE + callback + JIT provisioning)
- apps/server/src/core/auth/oidc/oidc.controller.ts (routes /api/auth/oidc/{login,callback,status})
- apps/server/src/core/auth/oidc/oidc.service.spec.ts (8 tests Jest, openid-client mocke)
- apps/server/src/integrations/environment/environment.service.ts : +9 getters OIDC
- apps/server/src/core/core.module.ts : +OidcModule dans imports

Client :
- apps/client/src/features/auth/queries/oidc-query.ts (hook useOidcStatus)
- apps/client/src/features/auth/components/oidc-login-button.tsx (bouton conditionnel)
- apps/client/src/features/auth/components/login-form.tsx : +OidcLoginButton

Securite :
- PKCE S256 obligatoire
- State CSRF en cookie httpOnly signe (5 min)
- Verification JWKS auto via openid-client v6
- Refetch userInfo apres echange du code
- JIT provisioning strict par defaut (OIDC_AUTO_PROVISION=false)

Lib : openid-client v6.8.2 (deja en deps), import lazy.

Documente dans ACADENICE_PATCHES.md (Patch 002) et .env.example.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
 2026-05-07 21:26:53 +02:00
Philip Okugbe
d42091ccb1
feat: favorites (#2103) 
* feat: favorites and templates(ee)

* rename migrations

* fix sidebar

* cleanup tabs

* fix

* turn off templates

* cleanup

* uuid validation
 2026-04-12 22:06:25 +01:00
Philip Okugbe
803f1f0b81
feat: user session management (#2056) 
* user session management

* WIP

* cleanup

* license

* cleanup

* don't cache index

* rename current device property

* fix
 2026-03-26 20:00:04 +00:00
Philip Okugbe
66c26af34b
noop audit module (#1994) 2026-03-05 09:29:39 +00:00
Philip Okugbe
69d7532c6c
feat(ee): audit logs (#1977) 
feat: clickhouse driver
* sync
* updates
 2026-03-01 01:29:03 +00:00
Philip Okugbe
59e945562d
feat(ee): page-level access/permissions (#1971) 
* Add page_hierarchy table

* feat(ee): page-level permissions

* pagination

* rename migration
fixes

* fix

* tabs

* fix theme

* cleanup

* sync

* page permissions notification
* other fixes

* sharing disbled

* fix column nodes

* toggle error handling
 2026-02-26 19:49:10 +00:00
Philip Okugbe
05b3c65b0f
feat: notifications (#1947) 
* feat: notifications
* feat: watchers

* improvements

* handle page move for watchers

* make watchers non-blocking

* more
 2026-02-14 20:00:38 -08:00
Philip Okugbe
6c422011ac
feat: public page sharing (#1012) 
* Share - WIP

* - public attachment links
- WIP

* WIP

* WIP

* Share - WIP

* WIP

* WIP

* include userRole in space object

* WIP

* Server render shared page meta tags

* disable user select

* Close Navbar on outside click on mobile

* update shared page spaceId

* WIP

* fix

* close sidebar on click

* close sidebar

* defaults

* update copy

* Store share key in lowercase

* refactor page breadcrumbs

* Change copy

* add link ref

* open link button

* add meta og:title

* add twitter tags

* WIP

* make shares/info endpoint public

* fix

* * add /p/ segment to share urls
* minore fixes

* change mobile breadcrumb icon
 2025-04-22 20:37:32 +01:00
Philipinho
30acc6676a exclude billing webhook endpoint 2025-03-08 19:08:02 +00:00
Philipinho
1988feb9ce exclude /health/live endpoint 2025-03-06 23:45:41 +00:00
Philipinho
35dcd5f254 refactor health module 2024-07-05 18:59:26 +01:00
Philipinho
d4eefa48a8 restructure directories 
* set log level based on env
 2024-06-09 15:57:52 +01:00
Philipinho
19a1f5e12d cleanups 2024-05-02 16:45:05 +01:00
Philipinho
4c573b9bc2 email integration 
* Nest email module with smtp, postmark and console log drivers
* react-email package
 2024-05-02 03:12:40 +01:00
Philipinho
186c4f5f5c move environment module to integrations 2024-03-21 20:09:25 +00:00
Philipinho
a821e37028 Refactoring 
* Refactor workspace membership system
* Create setup endpoint
* Use Passport.js
* Several updates and fixes
 2024-03-16 22:58:12 +00:00
Philipinho
b42fe48e9b feat: role authorizations - WIP 2024-03-08 23:55:42 +00:00
Philipinho
528b9d70b1 feat: groups 2024-03-05 16:22:24 +00:00
Philipinho
40251aef7d feat: spaces - WIP 2024-02-28 02:39:46 +00:00
Philipinho
a0ec2f30ca feat: search 2024-01-30 00:14:21 +01:00
Philipinho
093e634c0b switch to nx monorepo 2024-01-09 18:58:26 +01:00
Renamed from server/src/core/core.module.ts (Browse further)