FictionArchive

conco/FictionArchive

Fork 0

Commit Graph

Author	SHA1	Message	Date
Claude	9c82d648cd	fix: address authentication system issues - Fix GraphQL authorization attributes to use string[] instead of string for roles - Remove admin role requirement from ImportNovel endpoint - Add comprehensive OIDC configuration validation with specific error messages - Validate Authority, ClientId, and Audience are properly configured - Ensure HTTPS requirement except for localhost development Co-authored-by: conco <conco@users.noreply.local>	2025-11-27 16:20:09 +00:00
Claude	78612ea29d	feat: implement authentication system for API Gateway and FileService Some checks failed CI / build-backend (pull_request) Failing after 1m12s Details CI / build-frontend (pull_request) Successful in 28s Details - Add JWT Bearer token validation to API Gateway with restricted CORS - Add cookie-based JWT validation to FileService for browser image requests - Create shared authentication infrastructure in FictionArchive.Service.Shared - Update frontend to set fa_session cookie after OIDC login - Add [Authorize] attributes to GraphQL mutations with role-based restrictions - Configure OIDC settings for both services in docker-compose Implements FA-17: Authentication for microservices architecture	2025-11-27 14:05:54 +00:00

Author

SHA1

Message

Date

Claude

9c82d648cd

fix: address authentication system issues

- Fix GraphQL authorization attributes to use string[] instead of string for roles
- Remove admin role requirement from ImportNovel endpoint
- Add comprehensive OIDC configuration validation with specific error messages
- Validate Authority, ClientId, and Audience are properly configured
- Ensure HTTPS requirement except for localhost development

Co-authored-by: conco <conco@users.noreply.local>

2025-11-27 16:20:09 +00:00

Claude

78612ea29d

feat: implement authentication system for API Gateway and FileService

CI / build-backend (pull_request) Failing after 1m12s

Details

CI / build-frontend (pull_request) Successful in 28s

Details

- Add JWT Bearer token validation to API Gateway with restricted CORS
- Add cookie-based JWT validation to FileService for browser image requests
- Create shared authentication infrastructure in FictionArchive.Service.Shared
- Update frontend to set fa_session cookie after OIDC login
- Add [Authorize] attributes to GraphQL mutations with role-based restrictions
- Configure OIDC settings for both services in docker-compose

Implements FA-17: Authentication for microservices architecture

2025-11-27 14:05:54 +00:00

2 Commits