asp/keep
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
1,582 Commits 1 Branch 0 Tags
8379ae2136cd1ad3d40c06ed8ba6ca54d6a7e305
Commit Graph

2 Commits

Author SHA1 Message Date
Andrew Phillips
560ba6e20c fix: count_bounded error counting, clippy if-let, auth test dedup, doc tests 
- count_bounded: break on iterator error instead of counting errors as tokens
- collapse nested if-let chains with let-chains in auth middleware
- document JWT/Basic Auth as mutually exclusive
- TailTokensFilter::clone uses empty buffer (always pre-filter)
- fix 9 broken doc examples in server/common.rs
- remove 7 duplicate auth tests from auth.rs (covered by auth_tests.rs)
 2026-03-13 22:04:38 -03:00
Andrew Phillips
e672ec751e feat: add JWT auth, configurable username, switch password auth to Basic 
Add server-side JWT authentication with permission-based access control
(read/write/delete claims). Password authentication now uses HTTP Basic
auth only (replacing Bearer). Add configurable username for both server
and client (--server-username/--client-username, defaults to "keep").

JWT secret supports file-based loading via --server-jwt-secret-file for
Docker secrets. OPTIONS preflight requests bypass auth. HEAD mapped to
read permission.

Co-Authored-By: opencode <noreply@opencode.ai>
 2026-03-13 13:56:35 -03:00