feat: Maximus Account OAuth2 + machine activation (#51, #53) #65

Merged

maximus merged 7 commits from issue-51-compte-maximus-oauth into main 2026-04-10 19:38:28 +00:00

Conversation 6 Commits 7 Files changed 18 +1728 -29

7 commits

Author	SHA1	Message	Date
le king fu	e314bbe1e3	fix: remove handle_auth_callback from invoke_handler ... The auth callback is handled exclusively via the deep-link handler in lib.rs — exposing it as a JS-invocable command is unnecessary attack surface. The frontend listens for auth-callback-success/error events instead. Plaintext token storage documented as known limitation (see #66). Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-10 15:35:10 -04:00
le king fu	60b995394e	fix: tighten CSP img-src, show initials instead of external avatar ... Privacy-first: remove 'https:' from img-src CSP directive to prevent IP leaks via external avatar URLs (Google/Gravatar). AccountCard now shows user initials instead of loading a remote image. Also remove .keys-temp/ from .gitignore (not relevant to this PR). Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-10 15:24:52 -04:00
le king fu	4e92882724	fix: restrict last_check file perms + add useAuth to architecture docs ... - Use write_restricted() for auth/last_check file (consistent 0600) - Add useAuth hook to the hooks table in docs/architecture.md Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-10 15:14:31 -04:00
le king fu	ca3005bc0e	fix: use write_restricted for account.json (0600 perms) ... account.json contains PII and subscription_status — apply the same restricted file permissions as tokens.json. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-10 15:04:05 -04:00
le king fu	9e26ad58d1	fix: use base64 crate, restrict token file perms, safer chrono_now ... - Replace hand-rolled base64 encoder with base64::URL_SAFE_NO_PAD crate - Set 0600 permissions on tokens.json via write_restricted() helper (Unix) - Replace chrono_now() .unwrap() with .unwrap_or_default() Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-10 14:58:10 -04:00
le king fu	be5f6a55c5	fix: URL-decode auth code + replace Mutex unwrap with map_err ... - extract_auth_code now URL-decodes the code parameter to handle percent-encoded characters from the OAuth provider - Replace Mutex::lock().unwrap() with .lock().map_err() in start_oauth and handle_auth_callback to avoid panics on poisoned mutex Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-10 14:43:18 -04:00
le king fu	b53a902f11	feat: Maximus Account OAuth2 PKCE + machine activation + subscription check (#51, #53) ... - Add auth_commands.rs: OAuth2 PKCE flow (start_oauth, handle_auth_callback, refresh_auth_token, get_account_info, check_subscription_status, logout) - Add deep-link handler in lib.rs for simpl-resultat://auth/callback - Add AccountCard.tsx + useAuth hook + authService.ts - Add machine activation commands (activate, deactivate, list, get_activation_status) - Extend LicenseCard with machine management UI - get_edition() now checks account subscription for Premium detection - Daily subscription status check (refresh token if last check > 24h) - Configure CSP for API/auth endpoints - Configure tauri-plugin-deep-link for desktop - Update i18n (FR/EN), changelogs, and architecture docs Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-10 14:18:51 -04:00