feat: Complete Azure SSO implementation (v0.1.3)

Private

Public Access

- Add SSO session cleanup task (10-min expiry, 60s purge interval)
- Change callback to redirect to frontend with tokens as query params
- Add sso_callback_url to SecurityConfig with serde default
- Add SsoCallbackPage.tsx for handling SSO callback redirects
- Add /auth/sso/callback public route to App.tsx
- Add Sign in with Microsoft Azure button to LoginPage
- Replace insecure decode_jwt_payload with verify_id_token
- Implement JWKS caching (1-hour TTL) and RSA signature verification
- Validate iss, aud, exp claims on id_token
- Add jsonwebtoken dependency to pm-web crate
- Update config.example.toml with sso_callback_url setting
- Add sso_callback_url to settings response (read-only from TOML)

This commit is contained in:

Echo

2026-05-12 17:01:20 +00:00

parent 08add28b80

commit 86a6c714d4

18 changed files with 561 additions and 239 deletions

									
										2

frontend/package.json
									
												View File
												
				@ -1,7 +1,7 @@

				{

				  "name": "patch-manager-ui",

				  "private": true,

				  "version": "0.1.0",

				  "version": "0.1.3",

				  "type": "module",

				  "scripts": {

				    "dev": "vite",

feat: Complete Azure SSO implementation (v0.1.3)

2 frontend/package.json Unescape Escape View File

2

frontend/package.json

View File