cameleer/cameleer-server: Observability server for Cameleer agents - cameleer-server - Gitea: Git with a cup of tea

cameleer/cameleer-server

Go to file

hsiegeln 82e2593332 fix(ui): proper OIDC logout — server revoke + top-level redirect

Previous logout fired fetch(end_session, {mode:'no-cors'}), which is a
no-op for OIDC: cross-origin fetch never clears the IdP's session cookie.
Result: subsequent SSO clicks silently re-authenticated the prior user.

New flow:
1. Best-effort POST /auth/logout to bump token_revoked_before.
2. Clear localStorage + Zustand state.
3. Set sessionStorage 'cameleer:signed_out=1' so /login renders a
   confirmation splash (mirrors cameleer-saas pattern).
4. window.location.replace(end_session_endpoint?id_token_hint=...
   &post_logout_redirect_uri=...&client_id=...) — top-level navigation,
   the only form that actually clears the IdP session cookie.

client_id is now persisted at OIDC initiation alongside
end_session_endpoint and id_token, so logout has all three params
without an extra round-trip.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-04-27 11:57:04 +02:00

refactor(license): extract cameleer-license-api module from server-core

2026-04-26 20:06:52 +02:00

ci: include cameleer-license-api in maven deploy project list

2026-04-26 20:41:26 +02:00

docs(triage): close-out follow-up — all 12 parked failures resolved, 560/560 green

2026-04-21 23:45:59 +02:00

.superpowers/brainstorm

revert: temporarily revert EIP_CIRCUIT_BREAKER compound rendering

2026-03-29 18:15:10 +02:00

chore: rename cameleer3 to cameleer

2026-04-15 15:28:42 +02:00

cameleer-license-api

refactor(license): extract cameleer-license-api module from server-core

2026-04-26 20:06:52 +02:00

cameleer-license-minter

refactor(license): extract cameleer-license-api module from server-core

2026-04-26 20:06:52 +02:00

cameleer-server-app

fix(auth): close same-ms revocation race + tidy audit cleanup

2026-04-27 09:26:05 +02:00

cameleer-server-core

refactor(license): extract cameleer-license-api module from server-core

2026-04-26 20:06:52 +02:00

fix(auth): upsert UI login user_id unprefixed (drop docker seeder workaround)

2026-04-20 18:26:03 +02:00

docs(plan): logout hardening implementation plan

2026-04-27 09:01:52 +02:00

chore: rename cameleer3 to cameleer

2026-04-15 15:28:42 +02:00

org/eclipse/elk

chore: rename cameleer3 to cameleer

2026-04-15 15:28:42 +02:00

revert: temporarily revert EIP_CIRCUIT_BREAKER compound rendering

2026-03-29 18:15:10 +02:00

fix(ui): proper OIDC logout — server revoke + top-level redirect

2026-04-27 11:57:04 +02:00

.dockerignore

Add Docker build, K8s manifests, and CI/CD deploy pipeline

2026-03-12 19:01:39 +01:00

.gitattributes

Scaffold cameleer3-server project structure

2026-03-11 10:06:17 +01:00

.gitignore

chore: track .claude/rules/ and add self-maintenance instruction

2026-04-16 09:26:53 +02:00

AGENTS.md

chore(gitnexus): sync indexed symbol count

2026-04-24 09:20:25 +02:00

CLAUDE.md

refactor(license): extract cameleer-license-api module from server-core

2026-04-26 20:06:52 +02:00

docker-compose.yml

fix(auth): upsert UI login user_id unprefixed (drop docker seeder workaround)

2026-04-20 18:26:03 +02:00

docker-entrypoint.sh

fix: import /certs/ca.pem into JVM truststore at startup

2026-04-11 11:31:26 +02:00

Dockerfile

chore(docker): full-stack docker-compose mirroring deploy/ k8s manifests

2026-04-20 15:52:24 +02:00

HOWTO.md

docs(runtime): document hardening contract and runtime override (#152 )

2026-04-25 21:06:10 +02:00

openapi.json

chore: rename cameleer3 to cameleer

2026-04-15 15:28:42 +02:00

pom.xml

refactor(license): extract cameleer-license-api module from server-core

2026-04-26 20:06:52 +02:00

UI_FINDINGS.md

chore: rename cameleer3 to cameleer

2026-04-15 15:28:42 +02:00

UI-CONSISTENCY-AUDIT.md

chore: rename cameleer3 to cameleer

2026-04-15 15:28:42 +02:00