chore: bump version to 0.2.2

Co-authored-by: Draco Lunaris <331325+Draco-Lunaris@users.noreply.github.com>
fix(auth): update SQL queries to use totp_secret_encrypted instead of dropped totp_secret column
2026-06-05 21:23:55 -05:00 · 2026-06-05 21:08:00 -05:00 · 2026-06-05 19:41:24 -05:00 · 2026-06-05 19:27:32 -05:00 · 2026-06-05 17:41:02 -05:00
4 changed files with 5 additions and 5 deletions
--- a/Cargo.toml
+++ b/Cargo.toml
@ -12,7 +12,7 @@ members = [
 ]

 [workspace.package]
-version = "0.1.9"
+version = "0.2.2"
 edition = "2021"
 authors = ["Echo <echo@moon-dragon.us>"]
 license = "MIT"
--- a/crates/pm-auth/src/session.rs
+++ b/crates/pm-auth/src/session.rs
@ -120,7 +120,7 @@ pub async fn login(
    let user: Option<DbUser> = sqlx::query_as(
        r#"
        SELECT id, username, display_name, role, auth_provider,
-               password_hash, totp_secret, mfa_enabled, is_active, force_password_reset,
+               password_hash, totp_secret_encrypted, totp_secret_nonce, mfa_enabled, is_active, force_password_reset,
               failed_login_attempts, locked_until
        FROM users
        WHERE username = $1 AND auth_provider = 'local'
@ -278,7 +278,7 @@ pub async fn refresh_session(
    let user: DbUser = sqlx::query_as(
        r#"
        SELECT id, username, display_name, role, auth_provider,
-               password_hash, totp_secret, mfa_enabled, is_active, force_password_reset,
+               password_hash, totp_secret_encrypted, totp_secret_nonce, mfa_enabled, is_active, force_password_reset,
               failed_login_attempts, locked_until
        FROM users WHERE id = $1
        "#,
--- a/crates/pm-ca/src/ca.rs
+++ b/crates/pm-ca/src/ca.rs
@ -553,7 +553,7 @@ impl CertAuthority {
             FROM certificates \
             WHERE status = 'revoked'::cert_status \
               AND revoked_at IS NOT NULL \
-               AND not_after > NOW() \
+               AND expires_at > NOW() \
             ORDER BY revoked_at ASC",
        )
        .fetch_all(db)
--- a/crates/pm-web/src/routes/auth.rs
+++ b/crates/pm-web/src/routes/auth.rs
@ -435,7 +435,7 @@ async fn disable_mfa(
        ));
    }

-    sqlx::query("UPDATE users SET totp_secret = NULL, mfa_enabled = FALSE WHERE id = $1")
+    sqlx::query("UPDATE users SET totp_secret_encrypted = NULL, totp_secret_nonce = NULL, mfa_enabled = FALSE WHERE id = $1")
        .bind(auth_user.user_id)
        .execute(&state.db)
        .await
Author	SHA1	Message	Date
Draco-Lunaris-Echo	0b12ded1cf	chore: bump version to 0.2.2 All checks were successful CI Pipeline / Rust Format Check (push) Successful in 5s CI Pipeline / Clippy Lints (push) Successful in 52s CI Pipeline / Rust Unit Tests (push) Successful in 1m9s CI Pipeline / Security Audit (push) Successful in 5s CI Pipeline / Frontend Lint & Type Check (push) Successful in 16s CI Pipeline / Build .deb & Release (push) Successful in 3m41s Co-authored-by: Draco Lunaris <331325+Draco-Lunaris@users.noreply.github.com>	2026-06-05 21:23:55 -05:00
Draco-Lunaris-Echo	0296cf9c51	fix(auth): update SQL queries to use totp_secret_encrypted instead of dropped totp_secret column Co-authored-by: Draco Lunaris <331325+Draco-Lunaris@users.noreply.github.com>	2026-06-05 21:08:00 -05:00
Draco-Lunaris-Echo	604b31b937	chore: bump version to 0.2.1 All checks were successful CI Pipeline / Rust Format Check (push) Successful in 4s CI Pipeline / Clippy Lints (push) Successful in 52s CI Pipeline / Rust Unit Tests (push) Successful in 1m11s CI Pipeline / Security Audit (push) Successful in 5s CI Pipeline / Frontend Lint & Type Check (push) Successful in 17s CI Pipeline / Build .deb & Release (push) Successful in 3m43s Co-authored-by: Draco Lunaris <331325+Draco-Lunaris@users.noreply.github.com>	2026-06-05 19:41:24 -05:00
Draco-Lunaris-Echo	89e572faf8	fix(ca): correct not_after column name to expires_at in CRL query All checks were successful CI Pipeline / Rust Format Check (push) Successful in 7s CI Pipeline / Clippy Lints (push) Successful in 50s CI Pipeline / Rust Unit Tests (push) Successful in 1m9s CI Pipeline / Security Audit (push) Successful in 5s CI Pipeline / Frontend Lint & Type Check (push) Successful in 15s CI Pipeline / Build .deb & Release (push) Has been skipped The generate_crl() SQL query referenced a non-existent column "not_after" instead of the actual column "expires_at" in the certificates table. This caused a 500 error when requesting the CRL endpoint because PostgreSQL could not find the column. Fixes: CRL endpoint returns 500 Internal Server Error Co-authored-by: Draco Lunaris <331325+Draco-Lunaris@users.noreply.github.com>	2026-06-05 19:27:32 -05:00
Draco-Lunaris-Echo	78f5304214	chore: bump version to 0.2.0 All checks were successful CI Pipeline / Rust Format Check (push) Successful in 4s CI Pipeline / Clippy Lints (push) Successful in 55s CI Pipeline / Rust Unit Tests (push) Successful in 1m12s CI Pipeline / Security Audit (push) Successful in 6s CI Pipeline / Frontend Lint & Type Check (push) Successful in 18s CI Pipeline / Build .deb & Release (push) Has been skipped Co-authored-by: Draco Lunaris <331325+Draco-Lunaris@users.noreply.github.com>	2026-06-05 17:41:02 -05:00