nogoo9 / no-crd
76%

Repo Added 27 May 2026 04:33PM UTC

Files 38

Badge

Embed ▾

LAST BUILD ON BRANCH main
branch: SELECT

CHANGE BRANCH
x

No branch selected

change-docker-trigger-to-releases

docs/adr-alignment-and-template-guides

docs/auth-cheatsheet

docs/fix-docs

docs/fix-mermaid-and-cheatsheet

docs/reorganize-auth-docs

feat/husky-hooks

feat/ui-branding-version

feat/workspace-auth

feat/zizmor-agent-workflow

feature/fine-grained-permissions-adr-020

feature/peer-discovery-optimizations

features/0.7.0

fix/local-template-labels

fix/oidc-refresh-cookie-regression

fix/publish-mcp-name

fix/refresh-token-lifecycle

fix/template-labels-init-volumes

fix/ui-remove-localhost-fallback

hotfix/graceful-configmap-fallback

hotfix/graceful-error-handling

hotfix/pod-access-control

main

release/v0.3.0

release/v0.4.0

release/v0.8.0

release/v0.8.1

Committed 13 Jun 2026 05:01PM UTC coverage: 76.138% (+0.3%) from 75.834%

Build # 27473230951

Build Type

push

github

Committed by

web-flow

Commit Message

fix(auth): align cookie TTLs and add singleflight refresh (#32)

* fix(auth): align cookie TTLs with token lifetimes

- Clear stale nocr_refresh cookie when IdP rejects expired refresh token
  to prevent repeated futile round-trips
- Derive nocr_token Max-Age from JWT exp claim, nocr_refresh from IdP's
  refresh_expires_in, with PROXY_TOKEN_COOKIE_TTL and
  PROXY_REFRESH_COOKIE_TTL as configurable fallbacks
- Wrap performTokenRefresh in singleflight deduplication to safely
  support strict refresh token rotation under concurrent requests
- Pass refresh_expires_in from UI to server escrow endpoint
- Update architecture and SSO docs with cookie lifecycle details
- Add shared test helpers and e2e lifecycle test for refresh flow

* chore: enforce ≤72 char commit subject line

Add explicit character count rule to both the commit workflow and
commit rule to prevent subject lines from exceeding 72 characters.

* chore: bump version to 0.11.1

* docs: add ADR-023 for refresh token lifecycle changes

---------

Co-authored-by: Antigravity Agent <agent@antigravity>

Coverage Stats

88 of 93 new or added lines in 5 files covered. (94.62%)

7530 of 9890 relevant lines covered (76.14%)

21.35 hits per line

Relevant lines Covered

9890 RELEVANT LINES 7530 COVERED LINES

21.35 HITS PER LINE

Source Files on main

Recent builds

Builds	Branch	Commit	Type	Ran	Committer	Via	Coverage
27473230951	main	fix(auth): align cookie TTLs and add singleflight refresh (#32) * fix(auth): align cookie TTLs with token lifetimes - Clear stale nocr_refresh cookie when IdP rejects expired refresh token to prevent repeated futile round-trips - Derive nocr_t...	push	13 Jun 2026 05:02PM UTC	web-flow	github	76.14
27473078684	fix/refresh-token-lifecycle	Merge 7ead9af70 into 7abb80bec	Pull #32	13 Jun 2026 04:55PM UTC	web-flow	github	76.14
27456193150	main	docs: align ADRs and add template integration guides (#31) - Update ADR-002/003/011/013 to match code and add amendment tables - Promote ADR-020/021 to Accepted status - Add template interpolation, required context, and API visibility guides - Do...	push	13 Jun 2026 04:12AM UTC	web-flow	github	75.83
27456063357	docs/adr-alignment-and-template-guides	Merge c1e1b8c00 into a74cbcfd3	Pull #31	13 Jun 2026 04:06AM UTC	web-flow	github	75.83
27431872947	main	feat(ui): restore visual customizer themes list and dynamic styling (#30) * feat: session key health readiness and proxy keep-alive * chore: bump version to 0.11.0 * feat(ui): restore visual customizer themes list and dynamic styling - Fetch a...	push	12 Jun 2026 05:27PM UTC	web-flow	github	75.83
27431763285	feature/peer-discovery-optimizations	Merge d3c06e395 into b418dd22a	Pull #30	12 Jun 2026 05:25PM UTC	web-flow	github	75.83
27363863381	main	feat: fine-grained permissions, template ownership, and proxy sub-API visibility (#29) * chore: bump version to 0.10.0 * docs: align role/scope parameters and document API visibility controls * docs: add visual dashboard screenshots to readme a...	push	11 Jun 2026 05:04PM UTC	web-flow	github	75.46
27363645726	feature/fine-grained-permissions-adr-020	Merge 8fa0bfce9 into f248797cc	Pull #29	11 Jun 2026 05:00PM UTC	web-flow	github	75.46
27363092494	feature/fine-grained-permissions-adr-020	Merge 0dc6c0aba into f248797cc	Pull #29	11 Jun 2026 04:50PM UTC	web-flow	github	75.46
27301700572	main	feat: OIDC session refresh, custom favicon, and UI enhancements (#28) * chore: bump version to 0.9.0 * feat(auth): add header controls and require-token annotation * feat(ui): sticky maximized inline modal and drawer controls * feat(ui): add c...	push	10 Jun 2026 07:45PM UTC	web-flow	github	73.01

See All Builds (78)

nogoo9 / no-crd
76%

README BADGES
x

Markdown

Textile

RDoc

HTML

Rst

CHANGE BRANCH
x

Relevant lines Covered

Source Files on main

Recent builds

nogoo9 / no-crd 76%

README BADGES x

Markdown

Textile

RDoc

HTML

Rst

CHANGE BRANCH x

Relevant lines Covered

Source Files on main

Recent builds

nogoo9 / no-crd
76%

README BADGES
x

CHANGE BRANCH
x