furumi-ng

ab/furumi-ng

Fork 0

Commit Graph

Author	SHA1	Message	Date
Ultradesu	ea2fc53faf	fix(node-player): proxy /api through vite dev server for same-origin SW Service Worker only intercepts same-origin requests. In dev mode, API calls went directly to localhost:8085 (cross-origin), bypassing the SW. Now vite proxies /api to Rust API, keeping everything same-origin so the SW can inject Bearer tokens for audio/image requests. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-08 17:40:47 +01:00
Ultradesu	e99cacae8b	feat(auth): replace cookie/api-key auth with JWT Bearer tokens, separate UI from API Publish Metadata Agent Image / build-and-push-image (push) Successful in 6m3s Details Publish Node Player Image / build-and-push-image (push) Failing after 58s Details Publish Web Player Image / build-and-push-image (push) Has been cancelled Details - Add JWT Bearer token validation to Rust API via OIDC provider JWKS with automatic key rotation and 1-hour cache - Remove x-api-key auth support and built-in web UI from furumi-web-player, leaving it as a pure API server - Add /auth/token endpoint to Node player server to expose OIDC access tokens to the frontend - Move Node player auth endpoints from /api/* to /auth/* to avoid path conflicts with Rust API - Add static file serving to Node Express server for production single-container deployment - Fix SameSite=Strict cookie issue breaking OIDC redirect flow (use Lax) - Add Dockerfile.node-player with multi-stage Node.js build - Add CI workflows for node-player Docker image (dev + release) - Optimize Rust Dockerfiles with dependency caching layer - Update docker-compose with OIDC env vars and OLLAMA_MODEL support - Cherry-pick agent LLM client fixes from DEV branch Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-08 14:51:52 +01:00
Boris Cherepanov	310f0061d3	feat: added cors for web-player-backend	2026-03-23 16:55:22 +03:00

Author

SHA1

Message

Date

Ultradesu

ea2fc53faf

fix(node-player): proxy /api through vite dev server for same-origin SW

Service Worker only intercepts same-origin requests. In dev mode, API
calls went directly to localhost:8085 (cross-origin), bypassing the SW.
Now vite proxies /api to Rust API, keeping everything same-origin so
the SW can inject Bearer tokens for audio/image requests.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-04-08 17:40:47 +01:00

Ultradesu

e99cacae8b

feat(auth): replace cookie/api-key auth with JWT Bearer tokens, separate UI from API

Publish Metadata Agent Image / build-and-push-image (push) Successful in 6m3s

Details

Publish Node Player Image / build-and-push-image (push) Failing after 58s

Details

Publish Web Player Image / build-and-push-image (push) Has been cancelled

Details

- Add JWT Bearer token validation to Rust API via OIDC provider JWKS
  with automatic key rotation and 1-hour cache
- Remove x-api-key auth support and built-in web UI from furumi-web-player,
  leaving it as a pure API server
- Add /auth/token endpoint to Node player server to expose OIDC access
  tokens to the frontend
- Move Node player auth endpoints from /api/* to /auth/* to avoid
  path conflicts with Rust API
- Add static file serving to Node Express server for production
  single-container deployment
- Fix SameSite=Strict cookie issue breaking OIDC redirect flow (use Lax)
- Add Dockerfile.node-player with multi-stage Node.js build
- Add CI workflows for node-player Docker image (dev + release)
- Optimize Rust Dockerfiles with dependency caching layer
- Update docker-compose with OIDC env vars and OLLAMA_MODEL support
- Cherry-pick agent LLM client fixes from DEV branch

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-04-08 14:51:52 +01:00

Boris Cherepanov

310f0061d3

feat: added cors for web-player-backend

2026-03-23 16:55:22 +03:00

3 Commits