marketing-shibata50/tududi
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
tududi/backend/modules
History
Chris ca77222eae
fix: resolve OIDC session loss and migration failures (#1023) 
* fix: resolve OIDC session loss and migration failures

This commit fixes three critical issues affecting OIDC/SSO authentication:

1. Session Not Saved Before Redirect
   - Added explicit req.session.save() callback in OIDC callback handler
   - Ensures session is persisted before redirecting to /today
   - Prevents 401 errors after successful SSO authentication

2. Migration Resilience
   - Added DROP TABLE IF EXISTS users_new in migration
   - Prevents "table already exists" errors from failed migrations
   - Created cleanup script for orphaned migration tables

3. Trust Proxy Documentation
   - Documented TUDUDI_TRUST_PROXY requirement for reverse proxy deployments
   - Added troubleshooting guide for session loss issues
   - Updated .env.example with OIDC configuration examples

Fixes session loss when deployed behind reverse proxies (nginx, Traefik, etc.)

Changes:
- backend/modules/oidc/controller.js: Add session.save() before redirect
- backend/migrations/20260420000004-make-password-optional.js: Add DROP TABLE IF EXISTS
- backend/scripts/cleanup-failed-migration.js: New cleanup utility
- backend/.env.example: Add OIDC and trust proxy examples
- docs/10-oidc-sso.md: Add trust proxy configuration and troubleshooting
- docs/feature-plans/00-oidc-sso.md: Document required environment variables

* fix: prettier formatting in cleanup script
2026-04-14 07:53:55 +03:00
..
admin Fix admin password update silently failing due to Sequelize VIRTUAL field (#893) 2026-03-03 15:44:41 +02:00
areas Fix bug 366 (#764) 2026-01-07 18:18:07 +02:00
auth feat: Add OIDC/SSO authentication support (#1008) 2026-04-13 12:17:35 +03:00
backup Fix bug 366 (#764) 2026-01-07 18:18:07 +02:00
feature-flags feat: Add MCP Integration with client-agnostic instructions (#953) 2026-03-20 16:55:49 +02:00
habits Fix bug 366 (#764) 2026-01-07 18:18:07 +02:00
inbox feat: Add OIDC/SSO authentication support (#1008) 2026-04-13 12:17:35 +03:00
mcp fix: use correct InboxItem model name in MCP inbox tools (#986) 2026-04-12 09:10:42 +03:00
notes Fix bug 366 (#764) 2026-01-07 18:18:07 +02:00
notifications Fix bug 366 (#764) 2026-01-07 18:18:07 +02:00
oidc fix: resolve OIDC session loss and migration failures (#1023) 2026-04-14 07:53:55 +03:00
projects Fix project update API to support clearing nullable fields (#961) 2026-03-22 22:17:23 +02:00
quotes Fix bug 366 (#764) 2026-01-07 18:18:07 +02:00
search Show original task names for recurring tasks in search results (#914) (#915) 2026-03-06 08:57:10 +02:00
shares Fix bug 366 (#764) 2026-01-07 18:18:07 +02:00
tags Fix bug 366 (#764) 2026-01-07 18:18:07 +02:00
tasks feat: Add OIDC/SSO authentication support (#1008) 2026-04-13 12:17:35 +03:00
telegram fix: prevent Telegram polling errors from blocking container startup (#989) (#1019) 2026-04-13 20:44:27 +03:00
url feat: Add OIDC/SSO authentication support (#1008) 2026-04-13 12:17:35 +03:00
users feat: Add OIDC/SSO authentication support (#1008) 2026-04-13 12:17:35 +03:00
views Fix bug 366 (#764) 2026-01-07 18:18:07 +02:00