giles
e0a2a47ba2
Grant-based session revocation, remove iframe logout
...
Build and Deploy / build-and-deploy (push) Successful in 43s
Account creates OAuthGrant per authorization, revokes on logout.
Client apps verify grants via /auth/internal/verify-grant endpoint.
Removes iframe-based logout page.
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com >
2026-02-23 12:30:53 +00:00
giles
4e8e6bab61
Iframe-based SSO logout (tolerates dead apps)
...
Build and Deploy / build-and-deploy (push) Successful in 48s
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com >
2026-02-23 12:21:54 +00:00
giles
80c4400ae2
Remove sso_hint, add sso-clear logout chain through all apps
...
Build and Deploy / build-and-deploy (push) Has been cancelled
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com >
2026-02-23 12:18:04 +00:00
giles
c671be608d
Update shared: SSO revocation clears local session on logout
...
Build and Deploy / build-and-deploy (push) Has been cancelled
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com >
2026-02-23 12:16:12 +00:00
giles
2178607484
Move auth server from federation to account
...
Build and Deploy / build-and-deploy (push) Successful in 42s
Account is now the OAuth authorization server with magic link login,
OAuth2 authorize endpoint, SSO logout, and session management.
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com >
2026-02-23 12:00:20 +00:00
giles
19189e6655
Add /auth/clear to reset stale cookies
...
Build and Deploy / build-and-deploy (push) Successful in 49s
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com >
2026-02-23 11:45:36 +00:00
giles
526cd9d923
Logout through federation sso-logout
...
Build and Deploy / build-and-deploy (push) Successful in 44s
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com >
2026-02-23 11:32:17 +00:00
giles
c2924419e0
Silent SSO via sso_hint cookie
...
Build and Deploy / build-and-deploy (push) Successful in 42s
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com >
2026-02-23 11:24:59 +00:00
giles
b63d8d9c24
Fix logout redirect to blog home
...
Build and Deploy / build-and-deploy (push) Successful in 40s
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com >
2026-02-23 11:15:38 +00:00
giles
1fcd6c3656
Fix logout to use local /auth/logout/
...
Build and Deploy / build-and-deploy (push) Successful in 39s
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com >
2026-02-23 11:07:48 +00:00
giles
b0d9d7b9b5
Sign-in → account, clear old shared cookie
...
Build and Deploy / build-and-deploy (push) Successful in 39s
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com >
2026-02-23 10:57:27 +00:00
giles
bf6f76ed77
Trigger rebuild with fixed OAuth URL
...
Build and Deploy / build-and-deploy (push) Successful in 1m3s
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com >
2026-02-23 10:44:45 +00:00
giles
356781d271
Fix OAuth authorize URL prefix
...
Build and Deploy / build-and-deploy (push) Successful in 40s
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com >
2026-02-23 10:26:08 +00:00
giles
c3432fbad8
CI: trigger on decoupling branch
...
Build and Deploy / build-and-deploy (push) Successful in 1m38s
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com >
2026-02-23 10:17:40 +00:00
giles
8e2b8af6d7
Add CI workflow for build and deploy
...
Build and Deploy / build-and-deploy (push) Successful in 55s
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com >
2026-02-23 10:14:01 +00:00
giles
b3ce28b1d3
Initial account microservice
...
Account dashboard, newsletters, widget pages (tickets, bookings).
OAuth SSO client via shared blueprint — per-app first-party cookies.
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com >
2026-02-23 09:59:24 +00:00
