Revert "feat: header based acls (#337 )"

This reverts commit f0d2da281a.
feat: header based acls (#337 )
2025-10-29 13:15:46 +00:00 · 2025-09-03 12:01:33 +03:00 · 2025-09-02 19:06:52 +03:00 · 2025-09-02 18:38:11 +03:00 · 2025-09-02 01:27:55 +03:00
1 changed files with 1 additions and 0 deletions
--- a/internal/controller/oauth_controller.go
+++ b/internal/controller/oauth_controller.go
@@ -108,6 +108,7 @@ func (controller *OAuthController) oauthCallbackHandler(c *gin.Context) {
 	if err != nil || state != csrfCookie {
 		log.Warn().Err(err).Msg("CSRF token mismatch or cookie missing")
 		c.SetCookie(controller.config.CSRFCookieName, "", -1, "/", fmt.Sprintf(".%s", controller.config.RootDomain), controller.config.SecureCookie, true)
 		c.Redirect(http.StatusTemporaryRedirect, fmt.Sprintf("%s/error", controller.config.AppURL))
 		return
 	}
Author	SHA1	Message	Date
Stavros	c9817e7feb	Revert "feat: header based acls (#337 )" This reverts commit `f0d2da281a`.	2025-09-03 12:01:33 +03:00
Stavros	f0d2da281a	feat: header based acls (#337 ) * feat: add header decoder * feat: allow for dash substitute over slash for environments like kubernetes * feat: use decoded headers in proxy controller * refactor: simplify decode header to node function * refactor: use stdlib prefix check in header decoder * fix: lowercase key and filter before comparing	2025-09-02 19:06:52 +03:00
Stavros	9ce16c9652	fix: expire csrf cookie if it's invalid	2025-09-02 18:38:11 +03:00
Stavros	ad4fc7ef5f	refactor: don't export non-needed fields (#336 ) * refactor: don't export non-needed fields * feat: coderabbit suggestions * fix: avoid queries panic	2025-09-02 01:27:55 +03:00