~bigbes/lethe: master - srht.bigb.es git

a1e67ca7 — Eugene Blikh 24 days ago

collector: add Claude Code parser

1be25bac — Eugene Blikh 24 days ago

docs: record shipped web tasks and dev tooling updates

71346073 — Eugene Blikh 30 days ago

web: map tool-call setting to boolean attribute

26d77892 — Eugene Blikh 30 days ago

web: align tool-call hide selector

50654f96 — Eugene Blikh 30 days ago

web: wire display settings UI

7cffe38a — Eugene Blikh 30 days ago

web: add display preference modules

cfa98be8 — Eugene Blikh a month ago

docs(lethe-web-ui-login): record review pass + conclusion

e920ae88 — Eugene Blikh a month ago

web: prune lethe_auth_failures log to the 5-min window on insert

be6e43e7 — Eugene Blikh a month ago

oidcstub: percent-encode authorize redirect query params (PC1)

f1926dc4 — Eugene Blikh a month ago

server/web: fail loud when index.html lacks </head> for config injection

74314eeb — Eugene Blikh a month ago

docs(lethe-web-ui-login): record verify checks

34d3e982 — Eugene Blikh a month ago

docs(lethe-web-ui-login): plan + execute hands-off decisions

13113b8c — Eugene Blikh a month ago

web: AuthGate consolidates three "not authenticated" cards

Create AuthGate component as the single source of truth for the
unauthenticated UI. Cold renders show a manual sign-in button (IV7);
mid-session expiry auto-redirects via useEffect (IV7); auth_error shows
the distinct error card with a "Try again" button and never auto-retries
(IV6). Swap the inline AuthError cards at index, projects, and
SavedSearchesSection call sites.

f2376137 — Eugene Blikh a month ago

web: /login + /auth/callback routes + auth context + config reader

- web/src/lib/config.ts: readConfig() reads window.__LETHE_CONFIG__ (IF1),
  converts client_id -> clientId, throws on absent config (GPC6)
- web/src/lib/authContext.tsx: AuthProvider subscribes to tokenStore, parses
  ID token name claim, exposes signIn/signOut/reportAuthError via context;
  hasBeenAuthenticated flag supports IV7 cold-vs-session distinction
- web/src/routes/login.tsx: /login route calls signIn(return_to) on mount
- web/src/routes/auth.callback.tsx: validates state+TTL, exchanges code via
  raw fetch to OP /token (allowed exception), stores access_token via
  tokenStore.set, anti-loop guard using countCallbackFailures (IV6)
- web/src/routes/__root.tsx: wraps tree in AuthProvider above
  KeyboardCursorContext
- web/src/routeTree.gen.ts: regenerated by Vite with /login and /auth/callback
- internal/server/web/dist/index.html: rebuilt artifact with new asset hashes

5d910e82 — Eugene Blikh a month ago

server/web: tag Config fields for snake_case JSON output (IF1 contract)

c01a501a — Eugene Blikh a month ago

web: PKCE machinery + Authorization-header attachment in apiFetch

934cfa28 — Eugene Blikh a month ago

oidcstub: implement /authorize + /token auth-code+PKCE; inject window.__LETHE_CONFIG__ into SPA

ac34df37 — Eugene Blikh a month ago

docs(lethe-web-ui-palette-savedsearch): record review pass + conclusion

8d80e871 — Eugene Blikh a month ago

savedsearch: reject ?owner= on DELETE; cover all write paths in test (IV2)

6971b2d0 — Eugene Blikh a month ago

web: palette — gate prefetch with enabled+staleTime per plan 4.2