Trek_CN/server
Maurice 328d1c9468 fix(auth): keep the last admin when OIDC claims would demote it (#1274)
On OIDC-only instances the bootstrap admin (first SSO user) rarely carries the configured admin claim, so a forced re-login — e.g. after a JWT-secret rotation — re-derived its role purely from claims and demoted it to user, locking the instance out with no recovery. The OIDC login role sync now skips a downgrade that would strip the last remaining admin, and the admin user-update endpoint guards the same case.
2026-06-23 21:23:39 +02:00
..
assets v3.1.1 bug fixes (#1228) 2026-06-18 20:13:30 +02:00
public v3.0.16 — bug fixes (#964) 2026-05-06 21:38:40 +02:00
scripts v3.1.1 bug fixes (#1228) 2026-06-18 20:13:30 +02:00
src fix(auth): keep the last admin when OIDC claims would demote it (#1274) 2026-06-23 21:23:39 +02:00
tests test(days): bump over-long-time assertion to the new 250 limit (#1252) 2026-06-23 21:23:39 +02:00
.env.example v3.1.1 bug fixes (#1228) 2026-06-18 20:13:30 +02:00
.gitignore Release 3.1.0 (#1185) 2026-06-16 22:22:45 +02:00
.prettierrc Release 3.1.0 (#1185) 2026-06-16 22:22:45 +02:00
eslint.config.mjs Release 3.1.0 (#1185) 2026-06-16 22:22:45 +02:00
package.json fix(atlas): gzip-compress responses so large country GeoJSON loads behind reverse proxies (#1262) 2026-06-23 21:23:39 +02:00
reset-admin.js Stabilize core: better-sqlite3, versioned migrations, graceful shutdown 2026-03-22 17:52:24 +01:00
tsconfig.build.json Release 3.1.0 (#1185) 2026-06-16 22:22:45 +02:00
tsconfig.json Release 3.1.0 (#1185) 2026-06-16 22:22:45 +02:00
vitest.config.ts Release 3.1.0 (#1185) 2026-06-16 22:22:45 +02:00