2.1.0 release #4

Merged

ninjdai merged 10 commits from upcoming into master 2026-02-11 14:13:48 +01:00

Conversation 0 Commits 10 Files changed 19 +667 -410

ninjdai commented 2026-02-11 14:13:11 +01:00

Owner

Copy link

No description provided.

ninjdai added 10 commits 2026-02-11 14:13:12 +01:00

feat: /stats/fast endpoint 43c26838e1

refactor BamStats::from_bam ce855ef671

refactor: authentication rework (!3) ... 7ae4a83e24

This PR reworks the authentication system to lay the groundwork for session management (including allowing disconnecting other connected devices), and slightly better security by **reducing the token lifespan to only 7 days** and allowing them to be refreshed.

This system makes sessions differentiable from each other using a unique UUID for each. With this, only users who connected using username+password are able to share tokens to allow connection using QR codes.

Features :
- [x] POST /auth/refresh, which returns a new token linked to the same session with a refreshed 7 days expiry time
- [x] POST /auth/share, which is usable only by users who connected via username+password or that were given the auth_share permission, that returns a token to a new session with either the specified permissions or default permissions
- [x] GET /auth/perms, which returns your permissions
- [x] Permission System

Reviewed-on: #3
Co-authored-by: Ninjdai <ninjdai@duck.com>
Co-committed-by: Ninjdai <ninjdai@duck.com>

feat(tests): noperms jwt bearer 12b3790835

refactor: use user_id as a primary key in bam. ... d06bd2ecbe

Impacts all functions that use bam::find_by_id.
Allows for better security as it's no longer required to check that a user's id is the same as the bam's user_id, at it's therefore included in the find_by_id

fix: return NOT_FOUND in /bam/{id}/instance/search if the bam doesn't exist 27613dce88

refactor: various small improvements for readability 96d6af124e

refactor(cli): code readability improvements c2905430b3

fix: broken bam creation c10b6f3c4e

chore: bump version 24eb65e942

ninjdai merged commit 24eb65e942 into master 2026-02-11 14:13:48 +01:00

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

UEAuvergne/Alexandria!4

No description provided.