till/managarten
1
0
Fork 0
mirror of https://github.com/Memo-2023/mana-monorepo.git synced 2026-05-16 16:39:39 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
managarten/services/mana-core-auth/test
History
Till JS 0dfd603892 feat(auth): rate limit feedback, audit log UI, and E2E tests 
Rate-limiting feedback:
- LoginPage detects 429/account-locked errors and shows countdown timer
- Submit button disabled during cooldown period

Audit log:
- GET /auth/security-events endpoint (JWT-protected) in auth controller
- getSecurityEvents() in BetterAuthService + shared-auth client
- AuditLog component with event type labels, relative dates, UA parsing
- Integrated in ManaCore settings page

E2E tests (passkey-2fa.e2e-spec.ts):
- Passkey registration/authentication flow tests
- Auth guard enforcement (protected vs public endpoints)
- 2FA passthrough route existence tests
- Edge cases (cross-user access, missing fields, token shape)

CSRF note: Already covered by Better Auth (SameSite + HttpOnly +
Trusted Origins). Token refresh already has 4-retry + offline detection.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-26 21:58:56 +01:00
..
__mocks__ 🐛 fix(mana-core-auth): use BASE_URL as JWT issuer for OIDC compatibility 2026-02-01 13:55:05 +01:00
e2e feat(auth): rate limit feedback, audit log UI, and E2E tests 2026-03-26 21:58:56 +01:00
integration Fix wrong type 2025-12-04 23:25:25 +01:00
jest-e2e.json 🐛 fix(matrix-mana-bot): resolve QEMU emulation failure in CI 2026-02-01 13:59:04 +01:00
setup-e2e.ts improve code quality 2025-12-03 23:42:37 +01:00
setup.ts improve code quality 2025-12-03 23:42:37 +01:00