rspace-online

Commit Graph

Author	SHA1	Message	Date
Jeff Emmett	4a54e6af16	fix: enforce subdomain routing — spaces are subdomains, never path segments Audit and fix ~60 violations across 47 files where URLs were constructed as /{space}/moduleId instead of /moduleId (subdomain provides the space). - Add getModuleApiBase() helper to shared/url-helpers.ts - Fix client components: use getModuleApiBase() for fetch URLs, rspaceNavUrl() for navigation - Fix server routes: use c.get("isSubdomain") for redirects and JSON response URLs - Fix OAuth callbacks (notion, google, clickup): subdomain-aware redirects - Fix email notification URLs (rvote): use {space}.rspace.online format - Fix webhook registration (rtasks/clickup): subdomain-aware endpoint URL - Replace broken #getSpaceSlug() methods in folk-feed, folk-splat - Replace NODE_ENV checks with proper isSubdomain checks (rdata, rnetwork) Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-04-03 14:09:53 -07:00
Jeff Emmett	8efe18280c	feat: consolidate domains, install deps, fix EncryptID types - TASK-24: Install h3-js, @xterm/xterm, @xterm/addon-fit - TASK-51.3: Remove app switcher external link arrows, update ridentity.online UI links to /rids paths - TASK-51.4: Prune allowedOrigins (~30 → 16), simplify JWT aud to 'rspace.online', remove standalone domains from webauthn, update EncryptID HTML template links. Keep ridentity.online as canonical EncryptID/OIDC domain. - Fix EncryptIDClaims type: add username, did fields; update aud type to string \| string[] — resolves pre-existing TS error - TASK-12: Update backlog status (80% code-complete, blocked on security audit) - Backlog task updates for TASK-25/37/40/44, new TASK-110 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-03-11 21:55:39 -07:00

Author

SHA1

Message

Date

Jeff Emmett

4a54e6af16

fix: enforce subdomain routing — spaces are subdomains, never path segments

Audit and fix ~60 violations across 47 files where URLs were constructed
as /{space}/moduleId instead of /moduleId (subdomain provides the space).

- Add getModuleApiBase() helper to shared/url-helpers.ts
- Fix client components: use getModuleApiBase() for fetch URLs,
  rspaceNavUrl() for navigation
- Fix server routes: use c.get("isSubdomain") for redirects and
  JSON response URLs
- Fix OAuth callbacks (notion, google, clickup): subdomain-aware redirects
- Fix email notification URLs (rvote): use {space}.rspace.online format
- Fix webhook registration (rtasks/clickup): subdomain-aware endpoint URL
- Replace broken #getSpaceSlug() methods in folk-feed, folk-splat
- Replace NODE_ENV checks with proper isSubdomain checks (rdata, rnetwork)

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-04-03 14:09:53 -07:00

Jeff Emmett

8efe18280c

feat: consolidate domains, install deps, fix EncryptID types

- TASK-24: Install h3-js, @xterm/xterm, @xterm/addon-fit
- TASK-51.3: Remove app switcher external link arrows, update
  ridentity.online UI links to /rids paths
- TASK-51.4: Prune allowedOrigins (~30 → 16), simplify JWT aud
  to 'rspace.online', remove standalone domains from webauthn,
  update EncryptID HTML template links. Keep ridentity.online as
  canonical EncryptID/OIDC domain.
- Fix EncryptIDClaims type: add username, did fields; update aud
  type to string | string[] — resolves pre-existing TS error
- TASK-12: Update backlog status (80% code-complete, blocked on
  security audit)
- Backlog task updates for TASK-25/37/40/44, new TASK-110

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-03-11 21:55:39 -07:00

2 Commits