mirror of
https://github.com/stack-auth/stack.git
synced 2026-06-13 21:01:21 +08:00
82424d1be9
Register a new alpha-stage `saml-sso` app rather than exposing SAML to every project. Users opt in from the App Store; the dashboard SSO page, admin CRUD, and SDK routes all 400 with `SAML_SSO_NOT_ENABLED` until the app is installed. Alpha apps stay hidden in production via the existing NODE_ENV filter in `getAllAvailableAppIds`. - Add `saml-sso` to `ALL_APPS` + `ALL_APPS_FRONTEND` (icon, store copy, nav item pointing at the existing /sso route) - Wrap SSO page with `AppEnabledGuard` for the redirect-on-disabled UX - Backend: each SAML route checks `apps.installed["saml-sso"]?.enabled` and throws the new `KnownErrors.SamlSsoNotEnabled` - E2E: setup helpers enable the app on test projects; new discover test verifies the gate fires for unconfigured projects - Seed dummy data: enable saml-sso when `STACK_SEED_ENABLE_SAML=true` so the seeded acme/globex connections work without an extra click - Fix a pre-existing indent slip in the delete-dialog updateConfig call |
||
|---|---|---|
| .. | ||
| backend | ||
| dashboard | ||
| dev-launchpad | ||
| e2e | ||
| hosted-components | ||
| internal-tool | ||
| mock-oauth-server | ||
| mock-saml-idp | ||
| oauth-mock-server | ||