OneAuth

Commit Graph

Author	SHA1	Message	Date
veypi	241d22dba6	fix(api/verification): handle max_daily_count config correctly Fix the logic for code.max_daily_count setting to correctly handle: - 0: Disable verification code service entirely - -1: No limit on daily sends - >0: Limit daily sends to the specified number Previously both 0 and -1 were treated as unlimited, which was incorrect. The documentation states 0 should disable the service.	1 week ago
veypi	69efc4284b	fix(api/oauth): encrypt ClientSecret in database Encrypt OAuth Provider ClientSecret before storing in database to prevent sensitive credential exposure in case of database breach. - Encrypt ClientSecret on create using cfg.Config.Key.Encrypt() - Encrypt ClientSecret on update when provided - Decrypt ClientSecret before use in OAuth token exchange - Add AES-GCM encryption/decryption functions to crypto package - Gracefully handle legacy plaintext secrets during transition	1 week ago
veypi	4a316e6d67	fix(api/auth): reset count variable before uniqueness checks Fix a bug where the count variable was not reset before checking email and phone uniqueness. This could cause false positives if a previous check had count > 0, incorrectly reporting that email or phone already exists when they don't. - Reset count to 0 before email check - Reset count to 0 before phone check	1 week ago
veypi	9dc866315f	fix(api/settings): add admin permission check for settings update Add permission check in settings update API to ensure only admin users can modify system settings. This fixes a security vulnerability where any authenticated user could modify critical configurations. - Check 'setting:update' permission before allowing updates - Return 403 Forbidden for non-admin users	1 week ago
veypi	23c7f6cb7a	refactor(auth): 重构认证系统，支持多种验证方式和 OAuth 提供商管理 - 新增验证模块(api/verification)，统一处理短信和邮件验证码发送 - 新增邮件发送功能(libs/email)，支持 SMTP 协议 - 重构短信模块(libs/sms)，简化阿里云和腾讯云短信接口 - 新增 OAuth 提供商管理 API(api/oauth/providers)，支持 CRUD 操作 - 新增系统设置管理 API(api/settings)，支持动态配置更新 - 重构认证方式管理(api/auth/methods)，支持启用/禁用多种登录方式 - 删除旧的 sms_providers 和 sms API 模块，迁移至新验证体系 - 新增数据库模型：verification、email、oauth_provider、oauth_templates、setting - 更新配置文档，增加新功能的使用说明	1 week ago
veypi	ba39611f58	fix(org): 为组织创建者添加权限创建组织时，为组织特定的 admin 角色添加权限： - vb:: (通配符权限) - vb:org:read - vb:org:update - vb:org:delete 修复了组织创建者无法修改自己创建的组织的问题	1 week ago
veypi	37acea3420	feat: 实现组织成员角色管理功能	1 week ago
veypi	691f1df75b	feat: 添加角色管理模块（API + UI）	1 week ago
veypi	178fa755d4	refactor: 重构认证模型和数据库结构	1 week ago
veypi	8b2a1aba3b	refactor: 统一API错误类型处理	1 week ago
veypi	983a5651a3	fix: 修复路由和页面加载问题	1 week ago
veypi	dea82e80a1	validate resource	1 week ago
veypi	5daab97008	fix bug	1 week ago
veypi	26bd0bfd29	update	1 week ago
veypi	8fa01c4c52	upgrade	1 week ago
veypi	ced7cc6a07	update perm	1 week ago
veypi	52f2ae35ab	upgrade new version	2 weeks ago
veypi	45708ca4f0	remove old	2 weeks ago
veypi	a3923ebcdb	update	2 weeks ago
veypi	89e7caa7b0	uodate login api	3 weeks ago
veypi	6d0ec8e6ba	rename to vbase	3 weeks ago
veypi	a74ccb104f	update to new vigo version	3 weeks ago
veypi	1880a6ce0f	update router params	3 weeks ago
veypi	67b92662d1	add sms enable option	2 months ago
veypi	95eccc2cde	update	6 months ago
veypi	69b4b7c504	change vyes-ai	7 months ago
veypi	134ab38751	fix: fix login bug	7 months ago
veypi	ada216cfd5	feat: change auth check	7 months ago
veypi	1a29442c1c	im dead	7 months ago
veypi	e83f2da265	update crud and env.js	7 months ago
veypi	ae463e0723	update	7 months ago
veypi	a5339aa589	feat: oauth demo	7 months ago
veypi	959e390126	feat: change to vigo	7 months ago
veypi	3b9cbe1c1b	feat: change axios and add auth refresh	8 months ago
veypi	d472464d8a	update	10 months ago
veypi	71924315b4	update access	10 months ago
veypi	6277ab0c4c	feat: update app resouce	10 months ago
veypi	7e7e6ed506	feat: simplify user login	10 months ago
veypi	5112f1ab7d	change to new version	10 months ago
veypi	17f81f6a2a	del old file	2 years ago
veypi	f9065abe55	update	4 years ago
veypi	5e341aeef5	对接oa 去掉用户	4 years ago
veypi	27d5008919	file component	4 years ago
veypi	e081e4ecb6	用户权限编辑登录跳转	4 years ago
veypi	5efcf47351	添加权限角色编辑	4 years ago
veypi	4afa6f345e	命名规则统一改为驼峰式	4 years ago
veypi	aae799c7fa	change name of pack, add oalib	4 years ago
veypi	bcbfc0380a	add user role auth page	4 years ago
veypi	bc3f5e0b0c	home	4 years ago
veypi	82b64a4bb2	用户加密机制设计初步完成	4 years ago

1 2

52 Commits (241d22dba6ae88db0ad6cbc224f3b2bcfbaf2362)