Skip to content

Logout API / SSO Enhancements #922

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
shobhitupadhyayy wants to merge 11 commits into
base: main
Choose a base branch
from
Open

Logout API / SSO Enhancements #922

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
d104ea5
feat: add build script and enhance OAuth token handling
shobhitupadhyayy Sep 4, 2025
96a8807
refactor: streamline OAuth token handling and update package dependen…
shobhitupadhyayy Sep 4, 2025
2f4272c
fix: update redirect_uri in build script and auth service for OAuth flow
shobhitupadhyayy Sep 8, 2025
e7f5597
refactor: enhance SSO functionality and update authentication flow
shobhitupadhyayy Sep 29, 2025
da41938
talisman
shobhitupadhyayy Sep 29, 2025
9c7ff25
copilot comments resolve
shobhitupadhyayy Sep 30, 2025
96e52bb
comments resolve
shobhitupadhyayy Sep 30, 2025
8fb61c2
feat: implement logout functionality and enhance SSO integration
shobhitupadhyayy Jan 20, 2026
fa2cd13
chore: update .gitignore files to include app.json and manifest.json
shobhitupadhyayy Jan 20, 2026
7977411
feat: enhance SSO integration and refactor API service calls
shobhitupadhyayy Jan 28, 2026
c3e4bfd
fix: update cmsType and localPath defaults in configuration
shobhitupadhyayy Jan 28, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 3 additions & 2 deletions .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,6 +16,9 @@
# Mono auto generated files
mono_crash.*

# App JSON file
app.json

# Build results
[Dd]ebug/
[Dd]ebugPublic/
Expand Down Expand Up @@ -360,10 +363,8 @@ upload-api/extracted_files*
*copy*
.qodo
.vscode
app.json
# Snyk Security Extension - AI Rules (auto-generated)
.cursor/rules/snyk_rules.mdc
*extracted_files*
*MigrationData*
*.zip
app.json
31 changes: 31 additions & 0 deletions .talismanrc
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -158,4 +158,35 @@ fileignoreconfig:
checksum: f3bd8c6e981ed0acf26432859b2b7e388c0d90018513005cfc674726f14fe245
- filename: ui/src/components/SchemaModal/index.tsx
checksum: 607a465c9cd4a504b9a81750a3f9faa0f4e11c09414354d69ec7308c11f0046a

fileignoreconfig:
- filename: api/sso.utils.js
checksum: 5d589c128c4b38f8aacd70e5d02ddd7fa8e93ff7897ca69a1258378139d1d616
version: "1.0"

fileignoreconfig:
- filename: api/package-lock.json
checksum: 4d2fd1905b5933e1d2c4d178e1536422d4aac84caa9640149eab0432a75b712d
- filename: api/src/services/migration.service.ts
checksum: 1fdf5423840e170709c7c677c3a6a7c6ae61f373948c2ef295aa645a859c1af5
- filename: api/src/services/contentMapper.service.ts
checksum: 03d5dcc31b38fd435f6a4389d6891c7fc1ba27b32dc2b382b91173d84f4565f7
- filename: api/src/services/globalField.service.ts
checksum: b808815c7372f68fe9a5904d23be50cb0ec066592328ec1721dc3c395cbe3a2c
- filename: api/src/services/taxonomy.service.ts
checksum: 840ab11838ebf08df44ada0a3674dad8cc124bc8bcbc5dfd1d9c585a34e4aeda
- filename: api/src/services/org.service.ts
checksum: 0a50297164d7845d889fc78097164c4794a3f9cd7314c06365c8426a2a6ee52a
- filename: ui/src/pages/Login/index.tsx
checksum: 7f7c008586db60f1cc8df625b88bfdc5c3bb861c21e40a55fc763f0ac4a6a8d2
version: "1.0"

fileignoreconfig:
- filename: api/src/services/contentMapper.service.ts
checksum: 924b124214a93a7bec4c471304f5b270d5e735d506644180273b7118f3d37dd2
version: "1.0"

fileignoreconfig:
- filename: ui/src/pages/Login/index.tsx
checksum: 213c6441dc87d82ce6b97679d457ae56c6e40ef13a89bddd4f21afcf566b5576
version: "1.0"
Comment on lines +161 to 192
Copy link

Copilot AI Jan 27, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This file now repeats the top-level 'fileignoreconfig' key multiple times. In YAML, later duplicate keys override earlier ones, so most ignore entries will be dropped and talisman configuration becomes unreliable. Consolidate all ignored files under a single 'fileignoreconfig' list and keep a single 'version' field.

Suggested change
fileignoreconfig:
- filename: api/sso.utils.js
checksum: 5d589c128c4b38f8aacd70e5d02ddd7fa8e93ff7897ca69a1258378139d1d616
version: "1.0"
fileignoreconfig:
- filename: api/package-lock.json
checksum: 4d2fd1905b5933e1d2c4d178e1536422d4aac84caa9640149eab0432a75b712d
- filename: api/src/services/migration.service.ts
checksum: 1fdf5423840e170709c7c677c3a6a7c6ae61f373948c2ef295aa645a859c1af5
- filename: api/src/services/contentMapper.service.ts
checksum: 03d5dcc31b38fd435f6a4389d6891c7fc1ba27b32dc2b382b91173d84f4565f7
- filename: api/src/services/globalField.service.ts
checksum: b808815c7372f68fe9a5904d23be50cb0ec066592328ec1721dc3c395cbe3a2c
- filename: api/src/services/taxonomy.service.ts
checksum: 840ab11838ebf08df44ada0a3674dad8cc124bc8bcbc5dfd1d9c585a34e4aeda
- filename: api/src/services/org.service.ts
checksum: 0a50297164d7845d889fc78097164c4794a3f9cd7314c06365c8426a2a6ee52a
- filename: ui/src/pages/Login/index.tsx
checksum: 7f7c008586db60f1cc8df625b88bfdc5c3bb861c21e40a55fc763f0ac4a6a8d2
version: "1.0"
fileignoreconfig:
- filename: api/src/services/contentMapper.service.ts
checksum: 924b124214a93a7bec4c471304f5b270d5e735d506644180273b7118f3d37dd2
version: "1.0"
fileignoreconfig:
- filename: ui/src/pages/Login/index.tsx
checksum: 213c6441dc87d82ce6b97679d457ae56c6e40ef13a89bddd4f21afcf566b5576
version: "1.0"
- filename: api/sso.utils.js
checksum: 5d589c128c4b38f8aacd70e5d02ddd7fa8e93ff7897ca69a1258378139d1d616
- filename: api/package-lock.json
checksum: 4d2fd1905b5933e1d2c4d178e1536422d4aac84caa9640149eab0432a75b712d
- filename: api/src/services/migration.service.ts
checksum: 1fdf5423840e170709c7c677c3a6a7c6ae61f373948c2ef295aa645a859c1af5
- filename: api/src/services/contentMapper.service.ts
checksum: 03d5dcc31b38fd435f6a4389d6891c7fc1ba27b32dc2b382b91173d84f4565f7
- filename: api/src/services/globalField.service.ts
checksum: b808815c7372f68fe9a5904d23be50cb0ec066592328ec1721dc3c395cbe3a2c
- filename: api/src/services/taxonomy.service.ts
checksum: 840ab11838ebf08df44ada0a3674dad8cc124bc8bcbc5dfd1d9c585a34e4aeda
- filename: api/src/services/org.service.ts
checksum: 0a50297164d7845d889fc78097164c4794a3f9cd7314c06365c8426a2a6ee52a
- filename: ui/src/pages/Login/index.tsx
checksum: 7f7c008586db60f1cc8df625b88bfdc5c3bb861c21e40a55fc763f0ac4a6a8d2
- filename: api/src/services/contentMapper.service.ts
checksum: 924b124214a93a7bec4c471304f5b270d5e735d506644180273b7118f3d37dd2
- filename: ui/src/pages/Login/index.tsx
checksum: 213c6441dc87d82ce6b97679d457ae56c6e40ef13a89bddd4f21afcf566b5576

Copilot uses AI. Check for mistakes.
165 changes: 165 additions & 0 deletions api/manifest.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,165 @@
{
"uid": "68998661a5c2e100121c1b6a",
"name": "Migration Tool",
"description": "",
"target_type": "organization",
"visibility": "private",
"version": 2,
"icon": "",
"oauth": {
"client_id": "xJek_yZraa_HbU8v",
"client_secret": "LoTjFkVJakE9pGXXcS_nQQAJTEVlen9E",
Copy link

Copilot AI Jan 27, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

api/manifest.json includes OAuth client_secret. Committing client secrets is unsafe; move secrets to environment variables or a local-only config generated during setup, and keep only non-secret metadata in the repository.

Suggested change
"client_secret": "LoTjFkVJakE9pGXXcS_nQQAJTEVlen9E",

Copilot uses AI. Check for mistakes.
"redirect_uri": "http://localhost:5001/v2/auth/save-token",
"user_token_config": {
"enabled": true,
"scopes": [
"app.manifests:read",
"app.manifest:read",
"app.manifest:write",
"app.hosting:read",
"app.hosting:write",
"app.installations:read",
"app.installations.management:read",
"app.installations.management:write",
"app.authorizations:manage",
"app.authorizations.management:write",
"app.requests:write",
"app.requests.management:write",
"scim:manage",
"user.profile:read",
"user:read",
"user:write",
"user.tfa:write",
"user.assignments:read",
"user.assignments:write",
"user.notifications:read",
"user.notifications:write",
"organizations:read",
"organization:read",
"organization.roles:read",
"organization.share:read",
"organization.share:write",
"organization.ownership:write",
"organization.settings:write",
"organization.logs:read",
"organization.usage:read",
"organization.jobs:read",
"organization.jobs:write",
"cm.stacks.management:read",
"cm.stacks.management:write",
"cm.stack.management:read",
"cm.stack.management:write",
"cm.stack.settings:read",
"cm.stack.settings:write",
"cm.stack:share",
"cm.stack:unshare",
"cm.stack.users:read",
"cm.stack.users:write",
"cm.stack.delivery-tokens:read",
"cm.stack.delivery-tokens:write",
"cm.stack.management-tokens:read",
"cm.stack.management-tokens:write",
"cm.content-types.management:read",
"cm.content-types.management:write",
"cm.content-types:import",
"cm.content-types:export",
"cm.content-type:read",
"cm.content-type:write",
"cm.content-type:copy",
"cm.global-fields.management:read",
"cm.global-fields.management:write",
"cm.global-fields:import",
"cm.global-fields:export",
"cm.entries.management:read",
"cm.entries.management:write",
"cm.entries:import",
"cm.entries:export",
"cm.entry:read",
"cm.entry:write",
"cm.entry:publish",
"cm.entry:unpublish",
"cm.entry.workflow:write",
"cm.webhooks.management:read",
"cm.webhooks.management:write",
"cm.webhooks:import",
"cm.webhooks:export",
"cm.webhook:read",
"cm.webhook:write",
"cm.assets.management:read",
"cm.assets.management:write",
"cm.assets.rt:read",
"cm.assets.rt:write",
"cm.assets:download",
"cm.asset:read",
"cm.asset:write",
"cm.asset:publish",
"cm.asset:unpublish",
"cm.workflows.management:read",
"cm.workflows.management:write",
"cm.workflows.publishing-rules:read",
"cm.workflows.publishing-rules:write",
"cm.environments.management:read",
"cm.environments.management:write",
"cm.extensions.management:read",
"cm.extensions.management:write",
"cm.languages.management:read",
"cm.languages.management:write",
"cm.labels.management:read",
"cm.labels.management:write",
"cm.bulk-operations:publish",
"cm.bulk-operations:unpublish",
"cm.bulk-operations:add-to-release",
"cm.bulk-operations:delete",
"cm.bulk-operations:move-to-folder",
"cm.bulk-operations:workflow",
"cm.releases.management:read",
"cm.releases.management:write",
"cm.release:read",
"cm.release:write",
"cm.release:clone",
"cm.release:deploy",
"cm.roles.management:read",
"cm.roles.management:write",
"cm.audit-logs:read",
"personalize:read",
"personalize:manage",
"cm.publish-queue.management:read",
"cm.publish-queue.management:write",
"cm.taxonomies.management:read",
"cm.taxonomies.management:write",
"cm.taxonomy.terms:read",
"cm.taxonomy.terms:write",
"cm.branches.management:read",
"cm.branches.management:write",
"cm.branches:compare-merge",
"cm.branch-aliases.management:read",
"cm.branch-aliases.management:write",
"launch:manage",
"launch.gitproviders:manage",
"automationhub.projects.management:read",
"automationhub.projects.management:write",
"automationhub.automations:read",
"automationhub.automations:write",
"automationhub.executions:read",
"automationhub.audit-logs:read",
"automationhub.variables:read",
"automationhub.variables:write",
"automationhub.accounts:read",
"brand-kits:read",
"brand-kits:manage",
"cm.variant:read",
"cm.variant:write",
"analytics:read",
"auditlogs:read",
"teams:read",
"teams:write"
],
"allow_pkce": true
},
"app_token_config": {
"enabled": false,
"scopes": []
}
},
"group": "user"
}
Loading