aboutsummaryrefslogtreecommitdiffhomepage
path: root/backend/gen
AgeCommit message (Collapse)Author
2026-02-13feat(auth): store JWT in HTTP-only cookie instead of JS-accessible cookiensfisis
Prevent XSS-based token theft by making the JWT inaccessible to JavaScript. The backend now sets/clears the cookie via Set-Cookie headers, and the frontend retrieves user info from /api/me instead of decoding the JWT directly. - Add JWTCookieMiddleware to parse cookie and inject claims into context - Add /me and /logout endpoints to OpenAPI spec and handlers - Update PostLogin to return user object + Set-Cookie header - Replace Authorization header auth with cookie-based auth throughout - Rewrite frontend auth to use /api/me instead of jwt-decode - Remove jwt-decode dependency - Configure CORS with credentials for local dev Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-13refactor: rename module/package namensfisis
2025-08-17feat: update "PHPerKaigi" to "iOSDC Japan"nsfisis
2025-03-08websocket to pollingnsfisis
2025-03-04update go package namesnsfisis
2024-08-17refactor(backend): move fortee packagensfisis
2024-08-11refactor(backend): define OpenAPI spec of fortee login APInsfisis
2024-08-11refactor: move openapi.yaml to openapi/nsfisis
2024-08-08feat(backend/worker): enable `revive` in `golangci-lint`nsfisis
2024-08-08feat(backend/worker): enable `stylecheck` in `golangci-lint`nsfisis
2024-08-08feat(backend): generate taskqueue/processor_wrapper.go by go generatensfisis
2024-08-08refactor(backend): organize gen/ directorynsfisis
2024-08-01refactor(backend): `Id` to `ID` in oapi-codegennsfisis
2024-08-01refactor: simplify error responses in OpenAPI specnsfisis
2024-08-01refactor(backend): wrap ApiHandler with user authenticationnsfisis
2024-08-01refactor: run code generation by `go generate`nsfisis
generated by cgit v1.3.1 (git 2.54.0) at 2026-06-09 00:10:46 +0000