OptimusX
/
OneAuth
mirror of https://github.com/veypi/OneAuth.git
3
0
Fork 0
Code Issues Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
v3
v2
v1.0.0
v0.1.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'a22ad4a155'
${ noResults }
OneAuth/api/oauth
History
veypi 69efc4284b fix(api/oauth): encrypt ClientSecret in database 
Encrypt OAuth Provider ClientSecret before storing in database to prevent
sensitive credential exposure in case of database breach.

- Encrypt ClientSecret on create using cfg.Config.Key.Encrypt()
- Encrypt ClientSecret on update when provided
- Decrypt ClientSecret before use in OAuth token exchange
- Add AES-GCM encryption/decryption functions to crypto package
- Gracefully handle legacy plaintext secrets during transition
 		1 week ago
..
providers fix(api/oauth): encrypt ClientSecret in database 1 week ago
authorize.go refactor(auth): 重构认证系统,支持多种验证方式和 OAuth 提供商管理 1 week ago
client.go refactor: 统一API错误类型处理 1 week ago
init.go refactor(auth): 重构认证系统,支持多种验证方式和 OAuth 提供商管理 1 week ago
oidc.go refactor(auth): 重构认证系统,支持多种验证方式和 OAuth 提供商管理 1 week ago
revoke.go upgrade new version 1 week ago
token.go refactor(auth): 重构认证系统,支持多种验证方式和 OAuth 提供商管理 1 week ago