| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2025-08-14 | Fix the broken build by running pg as a separate container. | mo khan | |
| Improve shell scripts and remove /sparkles/restore endpoint - Add error handling and debugging to shell scripts with `set -e` and `DEBUG` flag - Ensure scripts run from project root with `cd "$(dirname "$0")/.."` - Remove `/sparkles/restore` endpoint from public routes and Envoy config - Add Postgres test container support for integration tests - Update CI configuration with newer Runway version and improved test setup - Simplify Makefile by removing redundant commands ------- :robot: Commit message generated by GitLab Duo | |||
| 2025-07-31 | Connect to postgresql | mo khan | |
| 2025-07-23 | refactor: remove create permission check | mo khan | |
| 2025-07-23 | chore: allow everyone to read all sparkles | mo khan | |
| 2025-07-23 | feat: change reader relationship to sparklee relationship | mo khan | |
| 2025-07-22 | chore: load schema and relationships via relationships.yaml file | mo khan | |
| 2025-07-22 | feat: connect to spicedb | mo khan | |
| 2025-07-21 | chore: define a spicedb schema | mo khan | |
| 2025-06-13 | chore: fix the oauth2 regex config | mo khan | |
| 2025-05-28 | docs: update envoy documentation | mo khan | |
| 2025-05-28 | chore: do not forward sensitive headers to Sparkle | mo khan | |
| 2025-05-28 | chore: rename headers from x-id-jwt to x-jwt | mo khan | |
| 2025-05-28 | chore: inject jwt headers for all requests | mo khan | |
| 2025-05-28 | refactor: always provide a user in the request context | mo khan | |
| 2025-05-28 | chore: read from id_token and bearer_token cookies | mo khan | |
| 2025-05-28 | chore: specify the issuer of the jwt provider | mo khan | |
| 2025-05-28 | refactor: parse headers injected by envoy | mo khan | |
| 2025-05-27 | chore: add retry policy for oauth2 http filter | mo khan | |
| 2025-05-24 | chore: remove duplicate log entry from envoy | mo khan | |
| 2025-05-24 | chore: stop using deprecated `exact_match` option | mo khan | |
| 2025-05-23 | feat: add external authorization service (authzd) with JWT authentication | mo khan | |
| - Add new authzd gRPC service implementing Envoy's external authorization API - Integrate JWT authentication filter in Envoy configuration with claim extraction - Update middleware to support both cookie-based and header-based user authentication - Add comprehensive test coverage for authorization service and server - Configure proper service orchestration with authzd, sparkled, and Envoy - Update build system and Docker configuration for multi-service deployment - Add grpcurl tool for gRPC service debugging and testing This enables fine-grained authorization control through Envoy's ext_authz filter while maintaining backward compatibility with existing cookie-based authentication. | |||
| 2025-05-15 | chore: allow envoy to handle health checks | mo khan | |
| 2025-05-13 | chore: specify the max_active_downstream_connections | mo khan | |
| 2025-05-12 | chore: fix typo in envoy config | mo khan | |
| 2025-05-12 | chore: safe_regex_match is deprecated and replaced with string_match | mo khan | |
| 2025-05-12 | chore: mimic how services are run between docker and host machine | mo khan | |
| 2025-05-12 | refactor: mimic target deployment filesystem | mo khan | |
 |
index : gitlab/sparkled.git | |
| GitLab CI/CD utilities | git |
| summaryrefslogtreecommitdiff |