pieced/pieced-portal
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
124 Commits 1 Branch 83 Tags
v0.1.76
Commit Graph

124 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
admin
cc5806f031 Debug pipeline 2026-04-25 20:12:22 +02:00
admin
dab18bb9e6 Debug pipeline 2026-04-25 20:10:36 +02:00
admin
de4ff5ebaf Debug pipeline 2026-04-25 20:09:17 +02:00
admin
f3a1ae0267 Debug pipeline 2026-04-25 20:04:55 +02:00
admin
e7d3fa3873 Debug pipeline 2026-04-25 19:30:48 +02:00
admin
baa0e2b597 Add docker env 2026-04-25 19:21:53 +02:00
admin
935dfb8abc Add docker env 2026-04-25 19:20:54 +02:00
admin
65d8a2e2ff Add docker env 2026-04-25 19:07:16 +02:00
admin
d62684dec7 Add docker env 2026-04-25 19:04:42 +02:00
admin
709588302c ci: add Gitea Actions workflows 2026-04-25 18:20:14 +02:00
admin
b9654d7a7c Timestamp and registration checking 2026-04-25 18:09:02 +02:00
admin
f550b3400f Frontend adjustments 2026-04-14 20:45:58 +02:00
admin
f0eca1959b fix(portal): security hardening for pilot readiness 
- C1: Rewrite /api/usage to resolve teamId server-side from tenant CR;
  customers can no longer pass arbitrary teamId (IDOR fix)
- C2: Remove POST /api/tenants — tenants are only created via admin
  approval flow
- H1: Validate packages against catalog, workspaceFiles against allowlist,
  and field lengths in PATCH /api/tenants/[name]
- H2: Remove full ZITADEL profile claims logging from JWT callback
- H3: Add safeError() utility; sanitize all error responses to clients,
  toggle raw errors via PORTAL_DEBUG_ERRORS=true
- H4/H5: Escape HTML entities in all email templates (contactName,
  companyName, adminNotes)
 2026-04-14 20:20:04 +02:00
admin
6f9f46b2d0 Ratelimit 2026-04-12 18:13:26 +02:00
admin
dbfa7560cf All the channel approval 2026-04-12 13:47:27 +02:00
admin
1edb5785e3 Add Health and Spend for Admins 2026-04-11 22:36:36 +02:00
admin
fdb56490dd All the MD files via Database 2026-04-11 21:14:09 +02:00
admin
c67259ebe0 All the UI fixes for now 2026-04-11 17:21:52 +02:00
admin
1bd51ecb5d Add possibility for admin to suspend/delete 2026-04-11 12:39:34 +02:00
admin
97b483c121 Adjusted SMTP 2026-04-11 12:21:34 +02:00
admin
9a96d74f5c All the initial admin requests approval flow 2026-04-11 11:54:21 +02:00
admin
94bfd25553 Session 6.3 2026-04-10 21:56:31 +02:00
admin
f20d5f09ae Working version 6.2 2026-04-10 14:44:03 +02:00
admin
d526c1ff4a Add initial Portal version 2026-04-09 22:16:22 +02:00