stack

mirror of https://github.com/stack-auth/stack.git synced 2026-06-13 21:01:21 +08:00

History

BilalG1 9fa7e3b0c3 fix team invites (#993 ) <!-- Make sure you've read the CONTRIBUTING.md guidelines: https://github.com/stack-auth/stack-auth/blob/dev/CONTRIBUTING.md --> <!-- This is an auto-generated comment: release notes by coderabbit.ai --> ## Summary by CodeRabbit * Refactor * Invitation flow now derives the invitation link from a provided origin rather than accepting a full callback URL. * Bug Fixes / Security * Enforced origin whitelist for invitation redirects to prevent untrusted callback URLs. * Tests * Added a test ensuring untrusted callback URLs are rejected with a proper error response. <!-- end of auto-generated comment: release notes by coderabbit.ai --> --------- Co-authored-by: Konsti Wohlwend <n2d4xc@gmail.com>		2025-11-05 13:17:33 -08:00
..
tests	fix team invites (#993 )	2025-11-05 13:17:33 -08:00
.env	Customizable ports (#962 )	2025-10-20 15:24:47 -07:00
.env.development	Customizable ports (#962 )	2025-10-20 15:24:47 -07:00
.eslintrc.cjs	tsup for stack-shared (#647 )	2025-04-28 21:26:52 -07:00
CHANGELOG.md	chore: update package versions	2025-10-29 18:13:53 -07:00
LICENSE	Create users & auth endpoints in backend (#85 )	2024-07-01 22:42:08 -07:00
package.json	chore: update package versions	2025-10-29 18:13:53 -07:00
tsconfig.json	In-source unit tests (#429 )	2025-02-14 11:47:52 -08:00
vitest.config.ts	Endpoints branching (#659 )	2025-04-30 15:39:47 -07:00