paulononato/backstage
1
0
Fork 0
Code Issues Pull Requests Actions 3 Packages Projects Releases Wiki Activity
Files
e7fdf2997f15164b0820594396eaee1afebc53dc
backstage/plugins/auth-node/src
T
History
Jack Palmer 208cf5f922 fix(auth): add security hardening and federated config for Auth0 logout 
Add server-side URL validation for logoutUrl (HTTPS + localhost only),
origin validation on the logout endpoint, and a configurable `federated`
option (default false) for Auth0 provider logout. Includes comprehensive
test coverage for all security controls.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Signed-off-by: Jack Palmer <jackpalmer@spotify.com>
2026-04-01 13:06:43 +01:00
..
extensions
flow
require the use of node prefix on native imports
2026-01-26 13:22:53 +01:00
identity
oauth
fix(auth): add security hardening and federated config for Auth0 logout
2026-04-01 13:06:43 +01:00
passport
proxy
sign-in
fix: use schema-first generic pattern for Zod type compatibility
2026-03-26 16:31:41 +01:00
index.ts
setupTests.ts
types.ts