CodeCow/stack
1
0
Fork 0
mirror of https://github.com/stack-auth/stack.git synced 2026-06-24 21:04:03 +08:00
Code Issues Actions 43 Packages Projects Releases Wiki Activity
bb69ee4230
stack/apps/e2e/tests/backend/endpoints/api/v1/auth
History
Konsti Wohlwend 7a35751f8e
Sign up rules (#1138) 
<!-- CURSOR_SUMMARY -->
> [!NOTE]
> **High Risk**
> Touches core sign-up/auth flows and user restriction semantics
(including new DB constraints) and introduces dynamic rule
evaluation/logging; misconfiguration or CEL/parser bugs could block
sign-ups or incorrectly restrict users.
> 
> **Overview**
> Introduces **CEL-based sign-up rules** (config-driven) that are
evaluated during password/OTP/OAuth sign-ups and anonymous upgrades;
matching rules can reject sign-ups or mark users as admin-restricted,
and triggers are logged for analytics.
> 
> Extends `ProjectUser` with `restrictedByAdmin` plus public/private
restriction details, updates restriction computation/filtering, and
exposes these fields via user CRUD (including validation + DB constraint
enforcing consistency when unrestricted).
> 
> Adds a new dashboard **Sign-up Rules** page with a visual condition
builder (CEL <-> visual tree), drag-reorder by priority, per-rule 48h
sparkline analytics via a new hidden internal endpoint, and adds
user-page UI to view/edit manual restrictions. Also refactors ClickHouse
client initialization to require env vars (removing
`isClickhouseConfigured` checks) and adjusts CI container startup wait
time.
> 
> <sup>Written by [Cursor
Bugbot](https://cursor.com/dashboard?tab=bugbot) for commit
2141e689e8c1b72303b805e9234f996010d0880. This will update automatically
on new commits. Configure
[here](https://cursor.com/dashboard?tab=bugbot).</sup>
<!-- /CURSOR_SUMMARY -->

<!-- This is an auto-generated comment: release notes by coderabbit.ai
-->
## Summary by CodeRabbit

* **New Features**
* Sign-up Rules: visual rule builder, in-project CRUD with drag-reorder,
per-rule analytics, backend evaluation, and admin UI.
* Admin user restrictions: dashboard controls, banners/status,
public/private admin details surfaced in user views.

* **APIs & Schema**
* Config and user schemas extended; new SignUpRejected error and sign-up
rule types added.

* **Tests**
* Extensive unit and E2E coverage for rules, parser, evaluator,
analytics, and restricted-user flows.

* **Docs**
  * Editorial guidance added to AGENTS.md.

* **Chores**
* DB statement timeout, updated clean script, minor dependency
additions.
<!-- end of auto-generated comment: release notes by coderabbit.ai -->
2026-02-03 11:08:24 -08:00
..
anonymous Sign up rules (#1138) 2026-02-03 11:08:24 -08:00
cli Add CLI authentication endpoints (#503) 2025-03-12 18:44:33 -07:00
mfa Upgrade oslo to oslojs (#564) 2025-03-26 02:02:03 +01:00
oauth Sign up rules (#1138) 2026-02-03 11:08:24 -08:00
otp Email outbox backend (#1030) 2025-12-12 10:26:38 -08:00
passkey Config sources (#1083) 2026-01-21 18:08:35 -08:00
password Sign up rules (#1138) 2026-02-03 11:08:24 -08:00
sessions Make refresh tokens more robust when deleting users 2025-10-03 01:35:09 -07:00
email-normalization.test.ts Email outbox backend (#1030) 2025-12-12 10:26:38 -08:00
sign-up-rules.test.ts Sign up rules (#1138) 2026-02-03 11:08:24 -08:00