hsiegeln 07f3c2584c fix: syncOidcRoles uses direct roles only, always overwrites ...

- Expose getDirectRolesForUser on RbacService interface so syncOidcRoles
  compares against directly-assigned roles only, not group-inherited ones
- Remove early-return that preserved existing roles when OIDC returned
  none — now always applies defaultRoles as fallback
- Update CLAUDE.md and SERVER-CAPABILITIES.md to reflect changes

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-04-07 10:56:40 +02:00

..

agent

feat: rename agent identity fields for protocol v2 + add SHUTDOWN lifecycle state

2026-04-01 12:22:42 +02:00

analytics

fix: usage events never flushed to ClickHouse

2026-04-03 10:07:13 +02:00

config

feat: implement multitenancy with tenant isolation + environment support

2026-04-04 15:00:18 +02:00

controller

feat: generic OIDC role extraction from access token

2026-04-07 10:16:52 +02:00

diagram

fix: address SonarQube reliability issues

2026-04-01 10:55:31 +02:00

dto

feat: generic OIDC role extraction from access token

2026-04-07 10:16:52 +02:00

ingestion

perf: batch processor and log inserts to reduce ClickHouse part creation

2026-04-03 22:48:04 +02:00

interceptor

fix: exclude search endpoint from audit log

2026-03-26 23:55:24 +01:00

rbac

fix: syncOidcRoles uses direct roles only, always overwrites

2026-04-07 10:56:40 +02:00

search

feat: add environment filtering across all APIs and UI

2026-04-04 15:42:26 +02:00

security

fix: syncOidcRoles uses direct roles only, always overwrites

2026-04-07 10:56:40 +02:00

storage

feat: add environment filtering across all APIs and UI

2026-04-04 15:42:26 +02:00

web

fix: resolve 8 SonarQube reliability bugs

2026-03-31 14:39:54 +02:00

.gitkeep

Scaffold cameleer3-server project structure

2026-03-11 10:06:17 +01:00

Cameleer3ServerApplication.java

feat(03-01): add agent registration controller, config, lifecycle monitor

2026-03-11 18:40:57 +01:00