mikkel/pvm
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
pvm/docs
History
Mikkel Georgsen ed0578cd07 Address security/tech debt: token refresh, JWKS thundering herd, config safety, jq migration 
- Add token refresh logic in Auth.js JWT callback with 60s expiry buffer
- Fix JWKS cache thundering herd with Mutex + double-checked locking
- Make trustHost conditional (dev-only) via SvelteKit's $app/environment
- Make devMode conditional on ZITADEL_PRODUCTION env var in setup script
- Replace fragile grep/cut JSON parsing with jq in setup-zitadel.sh
- Add OIDC_GRANT_TYPE_REFRESH_TOKEN to Zitadel OIDC app grant types
- Update TODO_SECURITY.md: mark resolved items, add RefreshAccessTokenError frontend handling

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-08 13:17:42 +01:00
..
AUTH_RESEARCH.md Add auth framework research document 2026-02-08 03:24:51 +01:00
TECH_STACK_RESEARCH.md Update tech stack research with finalized decisions 2026-02-08 03:06:53 +01:00
TODO_SECURITY.md Address security/tech debt: token refresh, JWKS thundering herd, config safety, jq migration 2026-02-08 13:17:42 +01:00
VISION.md Update README and VISION with finalized tech stack decisions 2026-02-08 03:12:56 +01:00