jennie/ghostguild-org
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
ghostguild-org/server
History
Jennie Robinson Faber ba92075366 Fix OIDC issuer generating http:// URLs in production 
The OIDC provider was falling back to config.public.appUrl for its
issuer, which could resolve to an http:// URL. This caused the logout
form action to use http://, violating the CSP form-action directive.
Hardcode the issuer fallback to https://ghostguild.org.
2026-03-05 22:42:12 +00:00
..
api Refactor email templates to use plain text format and update sender addresses 2026-03-05 18:40:37 +00:00
config Lots of UI fixes 2025-10-08 19:02:24 +01:00
emails Refactor email templates to use plain text format and update sender addresses 2026-03-05 18:40:37 +00:00
middleware Fix OIDC issuer generating http:// URLs in production 2026-03-05 22:42:12 +00:00
migrations Add light/dark mode support with CSS variables 2025-10-06 19:54:20 +01:00
models Implement OWASP ASVS L1 security remediation (Phases 0-2) 2026-03-01 12:53:18 +00:00
plugins Implement OWASP ASVS L1 security remediation (Phases 0-2) 2026-03-01 12:53:18 +00:00
routes Readying for design 2026-03-04 18:24:20 +00:00
utils Fix OIDC issuer generating http:// URLs in production 2026-03-05 22:42:12 +00:00