94 Commits

Author	SHA1	Message	Date
Konsti Wohlwend	bae04178cc	Endpoints branching (#659) ... Co-authored-by: Zai Shi <zaishi00@outlook.com> Co-authored-by: moritz <moritsch@student.ethz.ch>	2025-04-30 15:39:47 -07:00
Konsti Wohlwend	f3f2adcee7	Remove SmartRequest.auth.project.config (#658) ... Co-authored-by: Zai Shi <zaishi00@outlook.com> Co-authored-by: moritz <moritsch@student.ethz.ch>	2025-04-30 15:31:15 -07:00
Konstantin Wohlwend	335bc97027	Wrap migration into small transactions	2025-04-30 11:11:54 -07:00
Zai Shi	d9e2dae4c6	Config DB migration step 2 (#629) ... Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com> Co-authored-by: moritz <moritsch@student.ethz.ch>	2025-04-29 14:52:45 -07:00
Konsti Wohlwend	c25abaaa32	tsup for stack-shared (#647)	2025-04-28 21:26:52 -07:00
Konsti Wohlwend	a6fbcae21c	Update config.json schema (#620)	2025-04-14 13:23:09 -07:00
Zai Shi	61bc0de8f4	Config DB (#568) ... - Added new config json schema and helper functions - Separated the internal project and client project so we can later change the internal project APIs without breaking backward compatibility - Added database to config json and config json to project type so we can test and compare the result in production Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com>	2025-04-10 19:38:25 +02:00
Moritz Schneider	592d259dde	Api Keys (#590) ... <!-- Make sure you've read the CONTRIBUTING.md guidelines: https://github.com/stack-auth/stack-auth/blob/dev/CONTRIBUTING.md --> <img width="1510" alt="image" src="https://github.com/user-attachments/assets/99619123-6be5-4788-aebe-5fc2a9a36245" /> <img width="1510" alt="image" src="https://github.com/user-attachments/assets/660677bf-f19a-4673-94c8-59ac50eb6ae5" /> <img width="1510" alt="image" src="https://github.com/user-attachments/assets/11ae63c4-5813-4fd8-aa01-fa580d2103be" /> <!-- ELLIPSIS_HIDDEN --> ---- > [!IMPORTANT] > Introduces API key management for users and teams, integrating with existing project configurations and permissions, and adds comprehensive tests and examples. > > - **API Key Management**: > - Introduces `ProjectApiKey` model in `schema.prisma` for managing API keys. > - Adds `createApiKeyHandlers` in `handlers.tsx` to handle API key CRUD operations. > - Implements API key creation, revocation, and validation logic. > - **Permissions and Configurations**: > - Adds `allowUserApiKeys` and `allowTeamApiKeys` to `ProjectConfig` in `schema.prisma`. > - Updates `TeamSystemPermission` enum to include `MANAGE_API_KEYS`. > - Ensures API key operations respect project configurations and user/team permissions. > - **Testing and Examples**: > - Adds extensive tests in `api-keys.test.ts` to cover various API key scenarios. > - Updates example projects to demonstrate API key usage. > - **Miscellaneous**: > - Refactors existing code to integrate API key functionalities. > - Updates documentation and type definitions to reflect new API key features. > > <sup>This description was created by </sup>[<img alt="Ellipsis" src="https://img.shields.io/badge/Ellipsis-blue?color=175173">](https://www.ellipsis.dev?ref=stack-auth%2Fstack-auth&utm_source=github&utm_medium=referral)<sup> for 96f60c57f0. It will automatically update as commits are pushed.</sup> <!-- ELLIPSIS_HIDDEN --> --------- Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com>	2025-04-04 13:03:10 -07:00
CactusBlue	306f4e4c67	Permission Robustness (#591) ... <!-- ELLIPSIS_HIDDEN --> > [!IMPORTANT] > Enhance permission management by adding unique constraints, handling duplicate ID errors, and updating frontend and backend logic with comprehensive tests. > > - **Database**: > - Add unique constraint on `Permission` table for `[tenancyId, queryableId]` in `migration.sql`. > - Update `schema.prisma` to reflect new unique constraints. > - **Backend**: > - Update `crud.tsx` files to handle `PERMISSION_ID_ALREADY_EXISTS` error using `isErrorForNonUniquePermission()`. > - Add `isPrismaUniqueConstraintViolation()` in `prisma-client.tsx` to identify unique constraint violations. > - Add `PermissionIdAlreadyExists` error in `known-errors.tsx`. > - **Frontend**: > - Update `page-client.tsx` and `permission-table.tsx` to check for duplicate permission IDs before creation. > - **Tests**: > - Add tests in `project-permission-definitions.test.ts` and `team-permission-definitions.test.ts` to verify duplicate ID handling. > - Ensure permissions cannot be created with duplicate IDs across project and team contexts. > > <sup>This description was created by </sup>[<img alt="Ellipsis" src="https://img.shields.io/badge/Ellipsis-blue?color=175173">](https://www.ellipsis.dev?ref=stack-auth%2Fstack-auth&utm_source=github&utm_medium=referral)<sup> for b3ccd15bca. It will automatically update as commits are pushed.</sup> <!-- ELLIPSIS_HIDDEN --> --------- Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com> Co-authored-by: Zai Shi <zaishi00@outlook.com>	2025-04-02 01:12:13 +02:00
CactusBlue	909c722558	Revert migration from USER -> GLOBAL (#589) ... <!-- Make sure you've read the CONTRIBUTING.md guidelines: https://github.com/stack-auth/stack-auth/blob/dev/CONTRIBUTING.md --> <!-- ELLIPSIS_HIDDEN --> ---- > [!IMPORTANT] > Reverts `PermissionScope` enum from `'GLOBAL'` back to `'USER'` in `migration.sql`, affecting permission handling. > > - **Migration Reversion**: > - Reverts `PermissionScope` enum from `'GLOBAL'` back to `'USER'` in `migration.sql`. > - Affects permission handling in `ProjectConfig` and related tables. > > <sup>This description was created by </sup>[<img alt="Ellipsis" src="https://img.shields.io/badge/Ellipsis-blue?color=175173">](https://www.ellipsis.dev?ref=stack-auth%2Fstack-auth&utm_source=github&utm_medium=referral)<sup> for 0d0796c593. It will automatically update as commits are pushed.</sup> <!-- ELLIPSIS_HIDDEN -->	2025-03-28 00:04:15 +01:00
CactusBlue	793272c8c5	Rename USER to PROJECT in permissions (#576) ... <!-- ELLIPSIS_HIDDEN --> > [!IMPORTANT] > Renamed user-related permissions to project-related permissions across the codebase, affecting enums, schemas, APIs, models, and tests. > > - **Behavior**: > - Renamed `USER` to `PROJECT` in `PermissionScope` enum in `schema.prisma` and `migration.sql`. > - Updated `isDefaultUserPermission` to `isDefaultProjectPermission` in `schema.prisma` and `migration.sql`. > - Removed `jwks.json/route.ts` file. > - **API Changes**: > - Renamed `user-permission-definitions` and `user-permissions` endpoints to `project-permission-definitions` and `project-permissions` in `route.tsx` files. > - Updated CRUD handlers in `crud.tsx` files to reflect new naming. > - **Models**: > - Updated models in `permissions.tsx` to use `ProjectPermission` and `AdminProjectPermission`. > - Updated `KnownErrors` to use `ProjectPermissionRequired`. > - **Tests**: > - Renamed test files and updated test cases in `e2e/tests/backend/endpoints/api/v1` to reflect new naming. > - **Misc**: > - Updated `admin-app-impl.ts`, `client-app-impl.ts`, and `server-app-impl.ts` to use new project permission naming. > - Updated `schema-fields.ts` to reflect new permission ID schema. > > <sup>This description was created by </sup>[<img alt="Ellipsis" src="https://img.shields.io/badge/Ellipsis-blue?color=175173">](https://www.ellipsis.dev?ref=stack-auth%2Fstack-auth&utm_source=github&utm_medium=referral)<sup> for 08924f5241. It will automatically update as commits are pushed.</sup> <!-- ELLIPSIS_HIDDEN --> --------- Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com>	2025-03-27 09:39:48 -07:00
CactusBlue	1ffd1e3e5b	User permissions (#573) ... <!-- ELLIPSIS_HIDDEN --> > [!IMPORTANT] > Adds user permissions management, including models, API endpoints, and tests, alongside existing team permissions. > > - **Behavior**: > - Adds user permissions alongside team permissions, allowing for user-specific permission management. > - Introduces `ProjectUserDirectPermission` model in `schema.prisma` for direct user permissions. > - Updates `PermissionScope` enum from `GLOBAL` to `USER`. > - **API**: > - Adds CRUD endpoints for user permissions in `user-permissions` and `user-permission-definitions`. > - Updates existing team permission endpoints to support user permissions. > - **Tests**: > - Adds e2e tests for user permissions in `user-permissions.test.ts` and `user-permission-definitions.test.ts`. > - Updates existing tests to include user permissions where applicable. > - **Misc**: > - Updates `adminInterface.ts` and `server-app-impl.ts` to handle user permissions. > - Modifies `known-errors.tsx` to include `UserPermissionRequired` error. > - Adjusts `project-configs` and `projects` to include user default permissions. > > <sup>This description was created by </sup>[<img alt="Ellipsis" src="https://img.shields.io/badge/Ellipsis-blue?color=175173">](https://www.ellipsis.dev?ref=stack-auth%2Fstack-auth&utm_source=github&utm_medium=referral)<sup> for 8b73e668e2. It will automatically update as commits are pushed.</sup> <!-- ELLIPSIS_HIDDEN -->	2025-03-25 02:20:53 +01:00
Konsti Wohlwend	a99b04ac6c	Anonymous users (#566)	2025-03-20 18:24:19 -07:00
devin-ai-integration[bot]	0e3f63d2ac	Add CLI authentication endpoints (#503) ... Co-authored-by: Devin AI <158243242+devin-ai-integration[bot]@users.noreply.github.com> Co-authored-by: Konstantin Wohlwend <n2d4xc@gmail.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: TheCactusBlue <thecactusblue@gmail.com>	2025-03-12 18:44:33 -07:00
Moritz Schneider	6776af30fd	Active Sessions Page (#528) ... <img width="1443" alt="image" src="https://github.com/user-attachments/assets/611ede72-4d46-41dc-adea-9546c04b199a" /> Adds new active sessions page to settings <!-- ELLIPSIS_HIDDEN --> ---- > [!IMPORTANT] > Adds an active sessions page to settings, enabling users to view and manage their sessions, with backend support for session listing and deletion. > > - **Active Sessions Page**: > - Adds `ActiveSessionsPage` component in `account-settings.tsx` to display active sessions. > - Allows revoking individual sessions or all sessions except the current one. > - **Backend Changes**: > - Adds `sessionsCrudHandlers` in `crud.tsx` for session management (list, delete). > - Updates `ProjectUserRefreshToken` model in `schema.prisma` to include `id` and `isImpersonation` fields. > - Implements session listing and deletion in `serverInterface.ts` and `client-app-impl.ts`. > - **Error Handling**: > - Introduces `CannotDeleteCurrentSession` error in `known-errors.tsx`. > - **Testing**: > - Adds tests for session management in `endpoints/api/v1/auth/sessions` tests. > > <sup>This description was created by </sup>[<img alt="Ellipsis" src="https://img.shields.io/badge/Ellipsis-blue?color=175173">](https://www.ellipsis.dev?ref=stack-auth%2Fstack-auth&utm_source=github&utm_medium=referral)<sup> for ba78df0928. It will automatically update as commits are pushed.</sup> <!-- ELLIPSIS_HIDDEN --> --------- Co-authored-by: TheCactusBlue <thecactusblue@gmail.com> Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com> Co-authored-by: ellipsis-dev[bot] <65095814+ellipsis-dev[bot]@users.noreply.github.com>	2025-03-12 22:35:32 +01:00
CactusBlue	ef6248dd87	Option for merging/blocking account creations with same email but different oauth provider (#502) ... * Add SettingSelect component and sign-up mode configuration * update schema * update schema * add merge oauth schema fields * update test snapshots * reformat the file * add mergeOauthMethods in the UI * Improve documentation with minor enhancements and fixes (#466) * Improve PATCH /users/me performance * Neon domain (#488) * React setup docs (#491) * chore: update package versions * Update branding from Stack to Stack Auth in documentation (#504) Co-authored-by: Devin AI <158243242+devin-ai-integration[bot]@users.noreply.github.com> Co-authored-by: zai@stack-auth.com <zai@stack-auth.com> * Improve inner OAuth cookie error description * Fix tests * Add several spans * Fix Next.js navigation * chore: update package versions * add handler config * Fix conditional hooks in account settings page * Add `pnpm run claude-code` * Fixed docs image ratio (#507) * Documentation Updates (#508) * add links * moar * fix broken links * fixed images * updated readme * Add Python SDK tab to docs * Fix broken links * Prefix `pnpm pre` before `pnpm dev` * Automatically update pull request branches (#509) * Give PR updater more permissions * Ignore PR merge conflicts in GH Actions * [DEVIN: Konsti] Add userCount property to Project table with automatic update trigger (#506) Co-authored-by: Konstantin Wohlwend <n2d4xc@gmail.com> * chore: update package versions * rewrite as toMatchobject * fix test * test again * fix * update claude * fix migrations * fix migration * fix types * Update CLAUDE.md Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com> * more instructions * fix * what was i on * wew * factor things * correct the flow * Update apps/backend/src/app/api/latest/auth/oauth/callback/[provider_id]/route.tsx Very good catch Co-authored-by: ellipsis-dev[bot] <65095814+ellipsis-dev[bot]@users.noreply.github.com> * rename everything * fix more * fix typeerror * update all the tests * modify migration for legacy projects * add loading state * enable email verification for tests * update test * get a failing test * the test works now * remove debug console log * change error * no lowercase * use typedToUpper/Lowercase * capture err * fix types * modify error throw * fixed * add working tests * documentation update * Update apps/e2e/tests/backend/endpoints/api/v1/auth/oauth/merge-strategy.test.ts Co-authored-by: ellipsis-dev[bot] <65095814+ellipsis-dev[bot]@users.noreply.github.com> * remove eslint rule * fix json args * documentation update --------- Co-authored-by: devin-ai-integration[bot] <158243242+devin-ai-integration[bot]@users.noreply.github.com> Co-authored-by: Konstantin Wohlwend <n2d4xc@gmail.com> Co-authored-by: Zai Shi <zaishi00@outlook.com> Co-authored-by: zai@stack-auth.com <zai@stack-auth.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: ellipsis-dev[bot] <65095814+ellipsis-dev[bot]@users.noreply.github.com>	2025-03-10 21:25:12 +00:00
Chenalejandro	8211642e2d	fixing env variable name and its description (#511) ... Co-authored-by: alejandro <alejandro@localhost.localdomain>	2025-03-10 18:50:17 +01:00
devin-ai-integration[bot]	271ea9b175	[DEVIN: Konsti] Add userCount property to Project table with automatic update trigger (#506) ... Co-authored-by: Konstantin Wohlwend <n2d4xc@gmail.com>	2025-03-05 09:27:40 -08:00
devin-ai-integration[bot]	46f388342e	Make Project description field non-nullable (#483) ... Co-Authored-By: Konstantin Wohlwend <n2d4xc@gmail.com>	2025-02-27 11:32:29 -08:00
CactusBlue	b48172e337	Add cascade to sentEmail (#463) ... * add delete cascade * add cascade to both	2025-02-25 12:14:01 -08:00
CactusBlue	23497e5303	Log emails into database (#455) ... * log email send into database * update the model * rename models * properly wrap everything * migrate * remove password from logging --------- Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com>	2025-02-21 10:07:18 -08:00
Konstantin Wohlwend	fbbec19cbd	Auto-format Prisma files on save	2025-02-20 17:57:16 -08:00
Konstantin Wohlwend	354adeb1b5	Add several Postgres indices	2025-02-14 09:55:24 -08:00
Zai Shi	a444e13342	Local emulator fixes (#437)	2025-02-14 02:02:24 +01:00
Zai Shi	e9f8704934	updated email password for local emulator	2025-02-13 11:24:49 -08:00
Zai Shi	e55b42f848	Local emulator (#422)	2025-02-13 18:57:02 +01:00
Zai Shi	9d21b9df16	fixed seed script docker	2025-02-08 15:48:43 -08:00
Konsti Wohlwend	f2f1b9df82	Tenancies (#418) ... Co-authored-by: Zai Shi <zaishi00@outlook.com>	2025-02-07 22:54:04 -08:00
Konsti Wohlwend	cf95bb707f	Raw project query (#382)	2024-12-28 11:47:09 -08:00
Konstantin Wohlwend	b46bdc8f04	Fix STACK-BACKEND-5K	2024-12-23 19:16:24 -08:00
Konstantin Wohlwend	415dc2df42	Remove empty profile image strings from database	2024-12-23 13:08:36 -08:00
CactusBlue	cd35e8cdc4	Dashboard Metrics (#361) ... Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com>	2024-12-22 12:02:21 -08:00
Zai Shi	63a37774b7	added index to events	2024-12-19 19:40:22 -08:00
Zai Shi	c69307039d	Added run docker github actions (#369)	2024-12-15 01:21:18 +01:00
Zai Shi	13279dfe56	fixed accelerate and docker	2024-12-14 11:39:04 -08:00
Zai Shi	daaf3f53ce	Added Prisma Accelerate (#363)	2024-12-10 22:07:39 +01:00
Zai Shi	55a6309277	updated self host vars, reduced the number of required env vars	2024-12-08 16:29:08 -08:00
Konsti Wohlwend	22676c563b	Neon project provision (#358)	2024-12-08 11:44:35 -08:00
Zai Shi	21e45c89b2	fixed env vars	2024-12-07 11:19:55 -08:00
Konstantin Wohlwend	9b2899e5f2	Update seed script variable names	2024-12-07 10:36:52 -08:00
Zai Shi	d5d28b2dd1	Merge seed scripts (#354)	2024-12-03 16:53:17 +01:00
Zai Shi	918f205bd9	Self-host docker (#353)	2024-12-01 15:57:51 +01:00
Konsti Wohlwend	cec718f542	Identity Provider/External OAuth (#323) ... Co-authored-by: moritz <moritsch@student.ethz.ch>	2024-11-30 23:27:55 -08:00
Konstantin Wohlwend	c1b8601341	Advanced team invitations	2024-11-26 17:12:57 +01:00
Konsti Wohlwend	3b18f09ec7	Log geoip information with events (#344)	2024-11-17 18:07:36 +01:00
Zai Shi	fd8d166e04	Query/filtering with list users endpoint (#314)	2024-10-30 02:16:39 +01:00
Moritz Schneider	93a1fcf7cb	Passkey support (#321) ... * passkeys * add passkey tests --------- Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com>	2024-10-28 16:56:46 -07:00
Zai Shi	95ab828f14	removed client id unique constraint (#299)	2024-10-13 22:29:34 +02:00
Zai Shi	a785d47417	Project specific JWKs (#293) ... * added per project signing * added well-known/jwks.json * fixed bugs * fixed bugs * fixed tests * fixed not found error	2024-10-07 21:27:55 +02:00
Zai Shi	28c3f57f31	New contact channels (#287) ... * removed contact channels from otp * fixed types * fixed bugs * fixed bug * fixed bugs * updated user contact channel * updated tests * updated tests * added unique key to otp and password auth * removed contact channel from user object	2024-10-01 06:22:12 +02:00