stack

mirror of https://github.com/stack-auth/stack.git synced 2026-06-13 21:01:21 +08:00

History

BilalG1 9fa7e3b0c3 fix team invites (#993 ) <!-- Make sure you've read the CONTRIBUTING.md guidelines: https://github.com/stack-auth/stack-auth/blob/dev/CONTRIBUTING.md --> <!-- This is an auto-generated comment: release notes by coderabbit.ai --> ## Summary by CodeRabbit * Refactor * Invitation flow now derives the invitation link from a provided origin rather than accepting a full callback URL. * Bug Fixes / Security * Enforced origin whitelist for invitation redirects to prevent untrusted callback URLs. * Tests * Added a test ensuring untrusted callback URLs are rejected with a proper error response. <!-- end of auto-generated comment: release notes by coderabbit.ai --> --------- Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com>		2025-11-05 13:17:33 -08:00
..
backend	Significantly faster users/[user_id] endpoint (and some others) (#998 )	2025-11-05 09:15:36 -08:00
dashboard	fix team invites (#993 )	2025-11-05 13:17:33 -08:00
dev-launchpad	chore: update package versions	2025-10-29 18:13:53 -07:00
e2e	fix team invites (#993 )	2025-11-05 13:17:33 -08:00
mock-oauth-server	chore: update package versions	2025-10-29 18:13:53 -07:00
oauth-mock-server	In-source unit tests (#429 )	2025-02-14 11:47:52 -08:00