196 Commits

Author	SHA1	Message	Date
Zai Shi	8f73e99389	Endpoints for Neon integration (#351) ... /integrations/api-keys /integrations/oauth-providers	2024-11-27 12:30:20 +01:00
Konstantin Wohlwend	c1b8601341	Advanced team invitations	2024-11-26 17:12:57 +01:00
Konstantin Wohlwend	ac9a85317c	Stricter email input validation	2024-11-21 22:41:22 +01:00
Konstantin Wohlwend	26b09b0947	Fix build	2024-11-20 03:41:21 +01:00
Konstantin Wohlwend	1f84ff59aa	Create users endpoint can now take a password hash	2024-11-20 03:26:22 +01:00
Konstantin Wohlwend	6a0ca7531c	Disallow invalid emails	2024-11-20 00:12:20 +01:00
Konstantin Wohlwend	bc24b41f61	Replace required() of yup schemas with defined()	2024-11-18 20:08:55 +01:00
Zai Shi	b6f0276ac1	improve redirect url error log	2024-11-13 19:42:53 +01:00
Konsti Wohlwend	c2bc80bda5	Support create-next-app@15 with the setup wizard (#340)	2024-11-13 13:58:42 +01:00
Zai Shi	18d6e77ca2	Fixed user email update bug (#329)	2024-11-05 22:21:27 +01:00
Zai Shi	fd8d166e04	Query/filtering with list users endpoint (#314)	2024-10-30 02:16:39 +01:00
Moritz Schneider	93a1fcf7cb	Passkey support (#321) ... * passkeys * add passkey tests --------- Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com>	2024-10-28 16:56:46 -07:00
Zai Shi	363bfa9bed	OTP auth on the client SDK and dashboard (#309) ... Fixed the bug that user creation doesn't check the otp/password configs correctly UX improvement: added otp auth to user creation on the dashboard Improved user creation docs Added otp auth to user creation SDK	2024-10-22 00:03:56 +02:00
Zai Shi	7b0d955792	added jwt tests again	2024-10-21 09:37:45 -07:00
Konstantin Wohlwend	a79add4103	TOTP retry	2024-10-21 08:47:35 -07:00
Zai Shi	e6b898126e	Contact channel client (#290) ... Added contact channels to stack-app Added emails, OTP, and password settings to the account settings page Added /api/v1/auth/password/set Added otp_auth_enabled to users endpoints	2024-10-20 01:01:25 +02:00
Zai Shi	18d75fbf21	Contact channel APIs (#288) ... * removed contact channels from otp * fixed types * fixed bugs * fixed bug * fixed bugs * updated user contact channel * updated tests * updated tests * added unique key to otp and password auth * added contact channel api * added new send-verification-code route * updated tests * added contact channel create tests, fixed bug * added more tests, removed update * added more tests * added more tests * added more tests * fixed typecheck * fixed route structure * fixed bugs, fixed tests * added more tests * added more tests * fixed tests * fixed tests * implemented new merge account logic * moved user create of otp sign in to after the first email verification * added cc updates * fixed bugs * added more tests * added more flows * uncomment tests * added primary updates * Update apps/e2e/tests/backend/endpoints/api/v1/contact-channels/legacy-send-verification-code.test.ts Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com> * Update apps/e2e/tests/backend/endpoints/api/v1/auth/otp/sign-in.test.ts Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com> * updated test names * Update apps/e2e/tests/backend/endpoints/api/v1/auth-flows.test.ts Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com> * Update apps/e2e/tests/backend/endpoints/api/v1/auth-flows.test.ts Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com> * Update apps/backend/src/app/api/v1/auth/oauth/callback/[provider_id]/route.tsx Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com> * fixed lint * fixed lint * fix lint --------- Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com>	2024-10-14 02:12:56 +02:00
Konstantin Wohlwend	9da481b2cd	Require newline at the end of each file	2024-10-13 13:06:38 -07:00
Konstantin Wohlwend	cd4c259f0f	JWKS endpoint now uses base64url	2024-10-11 17:09:24 -07:00
Zai Shi	ce857fb0ac	fixed send team invitation api (#295) ... * fixed send team invitation api * added team invitation tests	2024-10-09 22:43:15 +02:00
Zai Shi	a785d47417	Project specific JWKs (#293) ... * added per project signing * added well-known/jwks.json * fixed bugs * fixed bugs * fixed tests * fixed not found error	2024-10-07 21:27:55 +02:00
Zai Shi	28c3f57f31	New contact channels (#287) ... * removed contact channels from otp * fixed types * fixed bugs * fixed bug * fixed bugs * updated user contact channel * updated tests * updated tests * added unique key to otp and password auth * removed contact channel from user object	2024-10-01 06:22:12 +02:00
Zai Shi	d0b3d6e620	Fix team creation on the server not automatically adding the current user (#266) ... * add_current_user => creator_user_id * added more tests * added error checks * removed getIdFromUserIdOrMe --------- Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com>	2024-10-01 06:11:00 +02:00
Zai Shi	85b33f6497	added list user tests	2024-09-28 15:33:24 -07:00
Zai Shi	430b27d06f	fixed email update (#284)	2024-09-29 00:30:00 +02:00
Zai Shi	06fcca6fe6	OTP (#263) ... * fixed otp send email template * added version * added send response type * updated email template * added otp email * added otp page * fixed bugs * fixed bugs, added back button on otp page * otp works * added max attempts per nonce code * fixed error return type * fixed tests * fixed bugs * updated button text * added tests * added totp code error handling * removed console.log * fixed verification code length * fixed code length * moved otp inside magic link sign in component * changed version back, updated ui wording * added old version otp email tests * fixed tests	2024-09-24 20:02:06 +02:00
Zai Shi	8ea8ff383e	Added handling for user canceling the oauth process (#260) ... * added oauth cancel handling * added translation * fixed tests * fixed reviews	2024-09-20 22:45:06 +02:00
Zai Shi	8587e87778	fixed verification code, added tests (#259) ... Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com>	2024-09-20 02:22:06 +02:00
Zai Shi	36a4edd93a	Added client side account deletion, team ids in user delete webhooks, and updated account setting UI design (#257) ... * added user delete team relation webhook * added delete account setting * added translations * updated translation * added account delete button and functions * added center to sidebar layout * added new section layout * updated sections * updated styles * updated setting styles * improved account settings * fixed account delete * added tests * fixed tests	2024-09-18 06:27:36 +02:00
Zai Shi	84e30eead0	Remove shared Facebook (#238) ... * removed facebook shared * updated test * added migration file * facebook enabled var * fixed migration file * fixed connected account migration file	2024-09-11 02:25:18 +02:00
Zai Shi	5bd08de6ed	fixed project deletion (#236)	2024-09-09 22:36:55 +02:00
Zai Shi	bb7074a29e	Team membership webhook (#234) ... * fixed webhook docs type * fixed docs * added team memberships webhook * changed docs sidebar width * updated tests	2024-09-08 23:52:10 +02:00
Zai Shi	57a33b2dd6	Query optimization (#230) ... * removed v1 api * added new database schema * fixed small problems * fixed import errors * fixed small problems in schema * fixed missing metadata * fixed totp db * updated user * added check auth data, updated cc primary * added user update * added comments * updated project create * fixed bugs * updated seed script * updated verification code handler * updated sign in * updated imports * updated projects * updated sign in route * remove credential and magic link fields from ProjectConfig model * fixed type bugs * updated otp sign-in * fixed seed script * fixed password update * updated credential and magic link enable * fixed projects credential and magic link * fixed oauth provider update * added otp and password config update * fixed db fkey * fixed circular dependency * fixed seeding * fixed auth method fkey constraint * password type => identifierType * fixed seed * fixed bugs * fixed circular import * deterministic auth methods order * fixed bug * fixed credential enabled default * fixed bugs * fixed credential enabled update bug * updated tests * fixed small bugs * fixed connected account bugs * updated test * fixed password update bug * fixed bug * fixed tests * fixed redirect bugs * added migration file * Update migration SQL * Fix stuff * improved get user speed * fixed crud, improved smart-request * improved smart request further * improved smart request * added prisma preview features * fixed smart request * fixed prisma * added otel * fixed bugs * fixed small problem * added jaeger and delay * fixed small things * updated parse auth structure --------- Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com>	2024-09-08 01:28:20 +02:00
Zai Shi	fe1fdc4c11	Connected account & auth methods DB migration (#204) ... Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com>	2024-09-07 13:03:31 -07:00
Konstantin Wohlwend	ee68c03d93	Fix linter	2024-09-06 21:36:12 -07:00
Konstantin Wohlwend	128cfc9cc1	JWKS file	2024-09-06 16:25:26 -07:00
Zai Shi	b1a59de1ea	Last active (#215) ... * added last active at * fixed team member users * updated tests	2024-09-01 02:28:43 +02:00
Zai Shi	c26c40b793	Removed dashboard apis (#211) ... * removed dashboard apis * redirect route -> page	2024-08-29 19:32:14 +02:00
Varun Guleria	18e5a8fe3b	Profile Image Avatar Editor (#100) ... * profile_image_uploader * feat: upload_link_value_change_and_refresh * Migrate to v2 * avatar editor v2 * added back missing pieces * fixed dependencies * fixed tests * fixed component structure --------- Co-authored-by: Zai Shi <zaishi00@outlook.com>	2024-08-27 02:13:37 +02:00
Konstantin Wohlwend	b119b7a640	Stricter expectToBeSignedIn	2024-08-22 20:27:52 -07:00
Konstantin Wohlwend	2c55d689a9	Refresh token revocation tests	2024-08-22 20:25:00 -07:00
Konstantin Wohlwend	c0ddab5e73	Revoke refresh tokens	2024-08-22 19:28:53 -07:00
Zai Shi	7b5d0ed793	Team metadata & client read only metadata (#196) ... * added team metadata * added client readonly metadata * updated tests * added team client meta data tests * added user metadata tests * added client read only metadata to stack-app * added client read only metadata	2024-08-20 20:39:13 +02:00
Konstantin Wohlwend	aec2024fbe	Artificial backend delay during dev mode	2024-08-17 14:27:33 -07:00
Zai Shi	64c9a1cef1	Fix domain duplication error message (#194) ... * check if domain already exists * added duplicated domain error	2024-08-17 23:16:37 +02:00
Zai Shi	fa8463db15	fixed create team on sign up (#188)	2024-08-15 20:59:13 +02:00
Zai Shi	203778f5a3	added managedProjectIds delete and tests (#182)	2024-08-13 07:28:09 +02:00
Konstantin Wohlwend	700034ca01	Fix project deletion ISE	2024-08-12 16:56:16 -07:00
Zai Shi	f7740b2a7f	added more tests for team permissions (#181)	2024-08-12 23:46:09 +02:00
Zai Shi	8cff34edcd	added project deletion tests	2024-08-11 20:57:56 -07:00
Zai Shi	e5965cf977	Team frontend components (#178) ... * Team invitation (#171) * team invitation wip * implemented handler * team invitation callback wip * added team invitation frontend * fixed listCurrentUserTeamPermissions * added team invitation email template * fixed bugs * fixed verification code handler * added more checks to team invitation verification * fixed team invitation page * restructured verification code handler * fixed frontend * fixed team invitation tests * added more team invitation test * fixed bug * added migration file * removed unused code * Allow Next.js version `latest` in package.json * Fix typo * Update error message * Remove unnecessary console.warn * Updated "edit this page" button * Hide unsupported properties from docs * OAuth token tests * Fix typo * added create user button * added create user button (#173) * added basic team settings * Create SECURITY.md * added editable text * added more team settings * Export button in tables * Export all pages of tables * Update security policy * Fix docs typo * More docs typos * Improved user creation handlers * added list users on client * updated team-settings * hide team setting component for now * Fix: Improve error handling for Server API (#170) * Added entity checks to provide better errors in API for 'server' access type * Removed 'ensureUserTeamPermissionExist', changed permissionId type to string in 'ensureUserHasTeamPermission' * added different error types for user team permission --------- Co-authored-by: Fahad Khan <fahad.khan@net-mon.net> Co-authored-by: Zai Shi <zaishi00@outlook.com> * added ensureClientUserAuthenticated * improved error handling * removed unused imports * fixed bug * added member list * Sign up restriction button on dashboard Fix #66, #74 * moved data table to stack-ui * added remove user modal * fixed chokidar * updated ui * fixed merge * fixed merge * fixed merge * updated settings component * improved mobile styles * added user invitation ui * added team creation page * added team creation to team component * added setting icon to team switcher * added settings sections * added client_team_creation_enabled * added frontend team creation enabled checks * updated demo page * added member profile update * fixed profile editing * added leave team button * added create/delete team redirect * fixed column header, updated team setting * fixed account setting padding * updated tests --------- Co-authored-by: Stan Wohlwend <n2d4xc@gmail.com> Co-authored-by: Fahad Khan <62707456+kfahad5607@users.noreply.github.com> Co-authored-by: Fahad Khan <fahad.khan@net-mon.net>	2024-08-12 02:11:42 +02:00
Konstantin Wohlwend	c182cebec6	MFA for non-password apps	2024-08-11 13:30:05 -07:00
Konstantin Wohlwend	d01471acfc	TOTP MFA components	2024-08-10 09:45:49 -07:00
Konstantin Wohlwend	1b550e7e48	TOTP 2FA endpoints	2024-08-10 09:45:48 -07:00
Konstantin Wohlwend	50fd3dfc2c	Fix type error	2024-08-10 09:45:48 -07:00
Konstantin Wohlwend	c64fbf4fcd	Sign up restriction button on dashboard ... Fix #66, #74	2024-08-10 09:45:48 -07:00
Konstantin Wohlwend	5b9ee575f8	Improved user creation handlers	2024-08-10 09:45:48 -07:00
Stan Wohlwend	5072f14891	OAuth token tests	2024-08-10 09:45:47 -07:00
Zai Shi	4bbead0ef9	Team invitation (#171) ... * team invitation wip * implemented handler * team invitation callback wip * added team invitation frontend * fixed listCurrentUserTeamPermissions * added team invitation email template * fixed bugs * fixed verification code handler * added more checks to team invitation verification * fixed team invitation page * restructured verification code handler * fixed frontend * fixed team invitation tests * added more team invitation test * fixed bug * added migration file * removed unused code	2024-08-10 09:45:47 -07:00
Konsti Wohlwend	dfb51b8346	Auth methods and connected accounts (#164)	2024-08-04 11:39:26 -07:00
Konsti Wohlwend	94a3edd77d	Svix concurrency workaround (#167)	2024-08-03 21:05:24 -07:00
Stan Wohlwend	a86788d924	OAuth callback tests	2024-08-03 18:28:32 -07:00
Stan Wohlwend	5c188ee812	Test lint in E2E tests	2024-08-02 17:15:59 -07:00
Stan Wohlwend	0306a5bd8a	Typecheck E2E test	2024-08-02 17:10:16 -07:00
Stan Wohlwend	c8074e5c9d	Fix tests	2024-07-28 06:37:24 -07:00
Stan Wohlwend	ec7e1c94ee	Fix "forgot password" error	2024-07-28 06:27:41 -07:00
Stan Wohlwend	b3ea2b0425	Fix server metadata	2024-07-27 15:43:13 -07:00
Stan Wohlwend	71f599ca39	Improve team tests	2024-07-27 14:48:59 -07:00
Konsti Wohlwend	aa654ccdc1	Redirect user to correct page after sign-in (#151)	2024-07-26 16:06:59 -07:00
Zai Shi	15b96049ae	Team user profile API (#150) ... * added team member endpoints * fixed circular dependency bug, added team member profiles tests * added more tests * added migration file	2024-07-26 16:06:59 -07:00
Stan Wohlwend	8cd0b1609f	Impersonation	2024-07-26 16:06:59 -07:00
Zai Shi	6beed942e9	Client team API (#149) ... * added transactions * added client team update and delete * added client side remove member * allow user remove them selves from team * fixed bug, fixed tests * added client update test, fixed bugs * added tests for team delete * added more tests, fixed bugs	2024-07-26 16:06:58 -07:00
Zai Shi	4ec03d0515	Improved documentation, fixed bugs (#147) ... Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com>	2024-07-24 11:38:26 -07:00
Zai Shi	0147213003	Better errors for crud handlers (#143) ... * added more errors to team creation * check teams in client get * added db checks	2024-07-22 03:45:30 +02:00
Stan Wohlwend	78c5f971af	Fix tests	2024-07-21 18:22:25 -07:00
Stan Wohlwend	d79db67db1	Fix local tests	2024-07-20 17:32:49 -07:00
Konsti Wohlwend	84960ec9ca	Mock OAuth server (#138)	2024-07-20 17:29:04 -07:00
Stan Wohlwend	49371dcb75	Fix tests	2024-07-20 13:16:14 -07:00
Zai Shi	d391e332e6	added enabled oauth providers	2024-07-20 12:58:42 -07:00
Zai Shi	54027d58a2	New client (#135) ... Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com>	2024-07-19 22:07:44 -07:00
Zai Shi	2b26e3cb44	Improve API docs (#133) ... * added projects and admin docs * added docs to team permissions * renamed url params to snake case * added team permission definitions to docs * added more docs * added more docs * added more docs to the api	2024-07-15 18:04:52 +02:00
Zai Shi	039cce7a58	Fix backend endpoints (#132) ... * More backend endpoint implementations Co-authored-by: Zai Shi <fomalhautb@users.noreply.github.com> * Stuff Co-authored-by: Zai Shi <fomalhautb@users.noreply.github.com> * fixed env docs and crud imports * Fix type error * fixed crud handler dependency issue with proxies * fixed wrong test * fixed is_paginated, added list project tests * Error when request queries or body properties are unused * Fix semicolon * added create project tests * Fix some type errors * Fix lint config * fixed project no auth bug * Fix lint errors * Make no-restricted-syntax an error * fixed project create no owner bug * fixed project domain config update * added more tests * Sign up tests * fixed email config update, added more tests * added more tests, strip uuid in tests * added oauth config update, added more tests * E-mail verification tests * Strip fewer fields * added updateProject function for testing * fixed project creation error, added more tests * Begin OAuth authorize tests * added get current project info * added test for project * removed description from current-project * added basic teams endpoint * improved openapi docs, added object types * improved docs, fixed docs bug * added email template endpoint * crudHandlers.xyzList * imp * Default values for Prisma handlers * CRUD queries * Fix PEitherWrite * Queries * added api keys endpoints * Authorize tests * Password sign-in endpoint * Sessions endpoints * added more tests for api keys * Update password endpoint * Hide x-stack-request-id header * fixed api key endpoints, added more tests * updated test messages * Password reset * implemented team crud * check-feature-support endpoint * added teams tests, updated project endpoint folder structure * added more tests for team * added team membership handler * Fix errors * Type fixes * Update comment * strings comment * Fix users page * added more tests to team membership * Rename team-memberships test file * removed test code * added user filter * added permission grant * added team permission definitions * added permission definition tests * added more tests * fixed permission definition * Improve types * More type fixes * Fix more type errors * Fix lint errors * Fix build error * updated permission code structure * fixed types * added recursive permission * Always log E2E test GH Actions logs * Internal server error messages are shown in test environments * Print Docker Compose logs * fix * fix more * Improve * fixes * fixes * fix stuff * Wait on more stuff * more fixes gh actions * Fix pnpm start:xyz * pin v * node env test * log order * test envvars * test * added default permissions * Credential sign up form now loads correctly * added default permission to create team and add user * Safari passwords match sign up * Add migration file * Don't error on authorize if blah * fix tests * restructured project with createCrudHandler * Account settings password repeat * Update README * fixed user permission listing * added sorting for permission definitions * fixed project default permission update * restructured project urls * fixed import error * removed format changes * removed format changes * removed format changes * removed unused route --------- Co-authored-by: Stan Wohlwend <n2d4xc@gmail.com> Co-authored-by: Zai Shi <fomalhautb@users.noreply.github.com>	2024-07-15 01:55:01 +02:00
Stan Wohlwend	698964766f	Disallow trailing spaces	2024-07-14 10:35:33 -07:00
Konsti Wohlwend	b0f233a44c	More backend endpoint implementations (#126) ... Co-authored-by: Zai Shi <fomalhautb@users.noreply.github.com>	2024-07-13 22:04:53 -07:00
Konsti Wohlwend	53450206f5	Create users & auth endpoints in backend (#85)	2024-07-01 22:42:08 -07:00
Stan Wohlwend	ab348af895	Prefix all environment variables with STACK_	2024-07-01 17:30:35 -07:00
Stan Wohlwend	e392684a3e	Fix snapshot test class names	2024-06-20 00:48:19 +02:00
Stan Wohlwend	77229f4b2e	Snapshot tests	2024-06-19 19:44:32 +02:00
Stan Wohlwend	b79bee6606	Run dotenv in E2E codebase itself	2024-06-18 18:38:30 +02:00
Stan Wohlwend	c7d3b8917d	Linting for E2E tests	2024-06-18 16:19:43 +02:00
Konsti Wohlwend	6480667a97	Split backend and dashboard (#83)	2024-06-18 15:49:31 +02:00
Stan Wohlwend	21bc179347	Remove unnecessary log statement	2024-05-18 17:51:45 +02:00
Stan Wohlwend	dec622ed9e	CRUD schemas (#28)	2024-05-12 20:29:14 +02:00
Stan Wohlwend	dc6659131c	Auth for smartRouteHandler (#27)	2024-05-05 10:28:31 +02:00
Stan Wohlwend	406ad69ebb	Docker compose dependencies (#20)	2024-05-04 15:42:41 +02:00
Zai Shi	66f6c86ddf	Basic Unit Tests (#15) ... * added basic api testing framework * added credential signup test * added current user test * added github action * fixed bugs in action file * updated action * added pnpm setup * added dependency install * updated pnpm lock * only run server tests * added new package for e2e test * removed unused tests * updated action * updated test command * added env var reading * fixed typo * fixed typo * fixed unit tests with staging * added delay e2e test * added start server to action * fixed typo * fix aciton * updated github action * fixed bugs * fixed eslint error	2024-04-24 14:24:56 +02:00