vikunja/pkg/modules/auth/oauth2server
kolaente 7da3607032 feat(audit): emit the login event for the OAuth code exchange
The new v2 OAuth token endpoint mints a fresh session without going
through NewUserAuthTokenResponse, so those logins were missing from the
audit trail. The refresh grant stays unaudited like the v1 refresh.
2026-06-12 10:43:38 +02:00
..
authorize.go refactor(auth): extract shared auth/token business logic for v2 reuse 2026-06-12 07:58:17 +00:00
client.go fix(oauth2server): accept all loopback redirect forms 2026-05-07 22:03:49 +00:00
client_test.go fix(oauth2server): accept all loopback redirect forms 2026-05-07 22:03:49 +00:00
pkce.go feat: add OAuth client validation and PKCE verification 2026-03-27 23:05:04 +00:00
pkce_test.go test: add tests for OAuth 2.0 authorization flow 2026-03-27 23:05:04 +00:00
token.go feat(audit): emit the login event for the OAuth code exchange 2026-06-12 10:43:38 +02:00