core/appview/oauth/ at 783a726efa78982346fe695676ffd8baaba26eb0 · tangled.org/core · Tangled

tangled.org / core

12

Monorepo for Tangled tangled.org

12

core / appview / oauth /

at 783a726efa78982346fe695676ffd8baaba26eb0 7 files

Seongmin Lee appview/oauth: remove `AuthReturnInfo` 5mo ago

appview/oauth: remove `AuthReturnInfo` Signed-off-by: Seongmin Lee <git@boltless.me>

5 months ago

accounts_test.go

appview/{pages,state}: simplify LoginPage params We don't need to pass full `MultiAccountUser` here. just `[]AccountInfo` should be enough. This way, we can make `MultiAccountUser` to always hold an active user. Signed-off-by: Seongmin Lee <git@boltless.me>

5 months ago

appview/{oauth,pages,state}: remove unused `AddAccount` session data idk why was this added. Seems like it isn't used? Signed-off-by: Seongmin Lee <git@boltless.me>

5 months ago

appview/oauth: remove `AuthReturnInfo` Signed-off-by: Seongmin Lee <git@boltless.me>

5 months ago

appview/{oauth,pages,state}: remove unused `AddAccount` session data idk why was this added. Seems like it isn't used? Signed-off-by: Seongmin Lee <git@boltless.me>

5 months ago

oauth: add granular scope request for atproto records & everything tangled-related

5 months ago

appview/oauth: invalidate sessions if inactive for too long if sessions are inactive for too long, tokens will not be refreshed, and calling authorized xrpc methods will error out with invalid_grant. this changeset does two things: - tracks the last time a session was active using a new redis pair: `oauth:session_meta:<did>:<session>`, this is updated every time `SaveSession` is called - checks for session inactivity every time `GetSession` is called, and deletes the session if so this way, `GetSession` will never return a session with expired tokens. Signed-off-by: oppiliappan <me@oppi.li>

8 months ago