ips/docs/ai/plans at main - CloudNebulaProject/ips - Forgejo: Beyond coding. We forge.

mirror of https://codeberg.org/Toasterson/ips.git synced 2026-04-10 13:20:42 +00:00

History

Till Wegmueller 8f048f6b2a Some checks are pending Rust CI / Format (push) Waiting to run Details Rust CI / Clippy (push) Waiting to run Details Rust CI / Build (Linux) (push) Blocked by required conditions Details Rust CI / Build (Illumos) (push) Blocked by required conditions Details Rust CI / Test (push) Blocked by required conditions Details Rust CI / End-to-End Tests (push) Blocked by required conditions Details Rust CI / Documentation (push) Blocked by required conditions Details feat: Add OIDC JWT authentication middleware for pkg6depotd Implement Bearer token validation using jsonwebtoken with JWKS caching and automatic key rotation handling. AuthState fetches keys from the configured OIDC provider's jwks_uri at startup and refreshes on unknown kid. Axum middleware (require_auth) protects write routes, injecting AuthenticatedUser into request extensions. The auth_check admin endpoint now performs real JWT validation when oauth2 is configured. Includes architecture plan for the full publish API with RBAC at docs/ai/plans/2026-04-09-publish-api-oidc.md.		2026-04-09 22:39:20 +02:00
..
2026-02-25-phase1-code-hygiene-and-architecture.md	feat: Preserve manifest text through install pipeline, add architecture plans	2026-03-23 17:28:10 +01:00
2026-02-25-phase2-pkg6-client-completion.md	feat: Preserve manifest text through install pipeline, add architecture plans	2026-03-23 17:28:10 +01:00
2026-02-25-phase3-sqlite-catalog-expansion.md	feat: Preserve manifest text through install pipeline, add architecture plans	2026-03-23 17:28:10 +01:00
2026-02-25-phase4-openidconnect-auth.md	feat: Preserve manifest text through install pipeline, add architecture plans	2026-03-23 17:28:10 +01:00
2026-04-09-publish-api-oidc.md	feat: Add OIDC JWT authentication middleware for pkg6depotd	2026-04-09 22:39:20 +02:00