github joaovitoriasilva/endurain v0.16.0-Alpha3
on GitHub

pre-releaseone day ago

v0.16.0-Alpha3 - Alpha3 for v0.16.0 - Single Sign-On support

⚠️ Warning:

  • This is not a final version, expect bugs and errors
  • The DB has schema changes, however no impacts are expected. Nevertheless backup your DB before applying the update.
  • MariaDB support is dropped. Use PostgreSQL as your DB. Check docs if need to migrate from MariaDB to PostgreSQL
  • Your users sessions will be deleted on upgrade. Users will have to authenticate again

Changes from Alpha2 to Alpha3

  • Fixed enable/disable provider from the list level #58
  • Icon hint inside provider's edit dialog is now aligned with available templates #58
  • Fixed issue that was breaking "Auto-redirect to SSO" #58
  • Added ability to have local login as a backup for SSO, even with "Auto-redirect to SSO" enabled. Adding ?forceLocalLogin=true to the url enables this. Example: https://endurain.com?forceLocalLogin=true #58
  • Enabled redirect on login. Example:
    • User is not logged in and navigates to https://endurain.com/settings
    • Redirects to https://endurain.com/login?redirect=/settings
    • User logs in using local or SSO auth
    • User is then redirected to https://endurain.com/settings instead of home page

Migrate from Alpha 1 to Alpha 2

  • You will need to change column idp_refresh_token in users_identity_providers table from varchar to text. Example with final stage bellow:
Screenshot 2025-11-04 at 16 40 36

Changes from Alpha1 to Alpha2

  • Fixed typo on README and docs index
  • Introduces Casdoor as a supported identity provider #58
  • Fixes update IDP not working
  • Fixes refresh token to large to be stored error
  • Add Strava activity retrieval by date range #368

New Features:

Backend

  • Drop MariaDB support
  • Introduces support for external identity providers (SSO) #58
  • New password hasher utility, replacing legacy bcrypt and password logic
  • New token manager utility for JWT creation/validation
  • Refresh tokens are now hashed before being stored -> safer (no JWT leakage)
  • Hashed content now uses Argon2id. Users passwords are updated automatically on new login
  • Switched file security module to external module - safeuploads
  • Backend now correctly handles missing files or missing routes on requests
  • New auth module, centralizing authentication (local and SSO)
  • Dependency bump

Frontend

  • Migrated some frontend components to TS
  • Introduces support for external identity providers (SSO) #58
  • Centralized and unified modal logic with new reusable Bootstrap modal composable
  • Added new validationUtils.ts for validation helper functions
  • Refactor asset imports to use centralized constants
  • Dependency bump

Fixes:

  • Frontend now correctly handles Refresh and CSRF refresh logic
  • Fix for following back results in no modal shown #385
  • Fix for can't click context menu after login #348
  • General bug fixes
  • Add TRADEMARK.md
  • Update Docker compose example for Jaeger service to use new image and config
Check out latest releases or
releases around joaovitoriasilva/endurain v0.16.0-Alpha3

Don't miss a new endurain release

NewReleases is sending notifications on new releases.

Get notifications