upaas

History

user 9ac1d25788 refactor: switch API from token auth to cookie-based session auth - Remove API token system entirely (model, migration, middleware) - Add migration 007 to drop api_tokens table - Add POST /api/v1/login endpoint for JSON credential auth - API routes now use session cookies (same as web UI) - Remove /api/v1/tokens endpoint - HandleAPIWhoAmI uses session auth instead of token context - APISessionAuth middleware returns JSON 401 instead of redirect - Update all API tests to use cookie-based authentication Addresses review comment on PR #74.	2026-02-16 00:31:10 -08:00
..
routes.go	refactor: switch API from token auth to cookie-based session auth	2026-02-16 00:31:10 -08:00
server.go	Initial commit with server startup infrastructure	2025-12-29 15:46:03 +07:00

user 9ac1d25788 refactor: switch API from token auth to cookie-based session auth

- Remove API token system entirely (model, migration, middleware)
- Add migration 007 to drop api_tokens table
- Add POST /api/v1/login endpoint for JSON credential auth
- API routes now use session cookies (same as web UI)
- Remove /api/v1/tokens endpoint
- HandleAPIWhoAmI uses session auth instead of token context
- APISessionAuth middleware returns JSON 401 instead of redirect
- Update all API tests to use cookie-based authentication

Addresses review comment on PR #74.

2026-02-16 00:31:10 -08:00

routes.go

refactor: switch API from token auth to cookie-based session auth

2026-02-16 00:31:10 -08:00

server.go

Initial commit with server startup infrastructure

2025-12-29 15:46:03 +07:00