supabase / auth / 14360131875

Builds Branch Commit Type Ran Committer Via Coverage
14360131875 hf/fix-redirect-ip-address fix: redirects must not be to ip addresses Pull #1984 hf github
68.11
14274052397 cs/revert-1974 fix: revert sanitize redirect URL #1974 Reverting this until we come up with a backwards compatible solution. Pull #1981 Chris Stockton github
68.08
14239048510 master fix: explicit permisions on actions (#1978) Found nothing vulnerable found in actions, just tightening up the permissions across all our publicly facing repos. Not clear why pull_request_target is being used. Ready to revert if needed push web-flow github
68.09
14230587345 chore/harden-runners fix: explicit permisions on actions removed use of pull_request_target Pull #1978 doublethink github
68.09
14206141716 cs/hooks-refactor-apierrors feat: refactor api error calls to use the apierrors package This change will help produce consistent errors as we move code out of the api package into smaller sub packages. Pull #1976 Chris Stockton github
68.18
14206106099 cs/hooks-refactor-apierrors feat: add error helpers to package and increase coverage to 100% This change is to allow updating the errors in the internal/api to from the private *Error funcs to using New*Error. Also added test coverage for these helpers. Pull #1976 Chris Stockton github
68.21
14193954875 master fix: sanitize redirect URL (remove fragment, query) before pattern matching (#1974) Redirect URL was not being sanitized (query and fragment not being stripped) before being pattern matched on the allowed URL globs. This made it possible in some ... push web-flow github
68.07
14193763240 fix--oauth-redirect-parsing fix: added parameter focused redirect tests Pull #1974 doublethink github
68.07
14193680064 master feat: add sign in with solana (EIP-4361) support (#1918) Adds sign in with Solana (SIWS). ## Configuration - `GOTRUE_EXTERNAL_WEB3_SOLANA_ENABLED` whether the Solana web3 provider is enabled or not - `GOTRUE_EXTERNAL_WEB3_SOLANA_MAXIMUM_VALIDIT... push web-flow github
68.06
14193551617 master feat: implement EIP-4361 support with SIWS message handling and verification Pull #1918 hf github
68.06
14192729923 master feat: implement EIP-4361 support with SIWS message handling and verification Pull #1918 hf github
68.05
14182602780 or/test-twitter-oauth fix linting errors Pull #1975 olirice github
67.58
14163310705 feat/mx-blocklist fix: optimisation to blockMXrecords type also check host against blocklist per SMTP spec Pull #1971 doublethink github
67.54
14133011190 master fix: propagate error when when confirming phone (#1939) Propagate errors that occur when calling tx.UpdateOnly in internal/models/user.go:ConfirmPhone. Previously this line returned nil: https://github.com/supabase/auth/blob/097f01f39fa79d5e8e4... push web-flow github
67.51
14128229450 master chore: move error codes to `apierrors` package (#1973) This change will allow moving code out of the api into smaller packages without creating cyclic dependencies. --------- Co-authored-by: Chris Stockton <chris.stockton@supabase.io> push web-flow github
67.51