registry/changelog.md

# Changelog

## 2026-03-20 - 1.5.1 - fix(web-app)
update dashboard navigation to use the router directly and refresh admin tabs on login changes

- removes the global router workaround in the dashboard and imports appRouter directly
- re-filters resolved view tabs when login state changes so the Admin tab matches system admin access
- adds dashboard navigation support for the organizations view

## 2026-03-20 - 1.5.0 - feat(opsserver,web)
replace the Angular UI and REST management layer with a TypedRequest-based ops server and bundled web frontend

- add a new OpsServer with TypedRequest handlers for auth, organizations, repositories, packages, tokens, audit, admin, OAuth, and user settings flows
- introduce shared TypedRequest contracts under ts_interfaces and wire the registry to serve POST /typedrequest requests
- replace the embedded Angular build pipeline with tsbundle/tswatch-based web bundling, static html entrypoint, and new ts_web app state and shell views
- remove the legacy Angular frontend, custom UI bundler script, reload websocket hot-reload path, and related build configuration

## 2026-03-20 - 1.4.2 - fix(registry)

align registry integrations with updated auth, storage, repository, and audit models

- update smartregistry auth and storage provider implementations to match the current request,
  token, and storage hook APIs
- fix audit events for auth provider, platform settings, and external authentication flows to use
  dedicated event types
- adapt repository, organization, user, and package handlers to renamed model fields and revised
  repository visibility/protocol data
- add missing repository and team model fields plus helper methods needed by the updated API and
  permission flows
- correct AES-GCM crypto buffer handling and package version checksum mapping

## 2026-03-20 - 1.4.1 - fix(repo)

no changes to commit

## 2026-03-20 - 1.4.0 - feat(release,build,tests)

add automated multi-platform release pipeline and align runtime, model, and test updates

- add a Gitea release workflow that builds the UI, bundles embedded assets, cross-compiles binaries
  for Linux and macOS, generates checksums, and publishes release assets from version tags
- switch compilation to tsdeno with compile targets defined in npmextra.json and simplify project
  scripts for check, lint, format, and compile tasks
- improve CLI startup error handling in mod.ts and guard execution with import.meta.main
- update test configuration to load MongoDB and S3 settings from qenv-based environment files and
  adjust tests for renamed model and token APIs
- rename package search usage to searchPackages, update audit event names, and align package version
  fields and model name overrides with newer dependency behavior

## 2025-12-03 - 1.3.0 - feat(auth)

Add external authentication (OAuth/OIDC & LDAP) with admin management, UI, and encryption support

- Introduce external authentication models: AuthProvider, ExternalIdentity, PlatformSettings to
  store provider configs, links, and platform auth settings
- Add AuthProvider admin API (AdminAuthApi) to create/update/delete/test providers and manage
  platform auth settings
- Add public OAuth endpoints (OAuthApi) for listing providers, initiating OAuth flows, handling
  callbacks, and LDAP login
- Implement ExternalAuthService to orchestrate OAuth and LDAP flows, user provisioning, linking,
  session/token generation, and provider testing
- Add pluggable auth strategy pattern with OAuthStrategy and LdapStrategy plus AuthStrategyFactory
  to select appropriate strategy
- Add CryptoService for AES-256-GCM encryption/decryption of provider secrets and helper for key
  generation
- Extend AuthService and session/user handling to support tokens/sessions created by external auth
  flows and user provisioning flags
- Add UI: admin pages for managing auth providers (list, provider form, connection test) and login
  enhancements (SSO buttons, LDAP form, oauth-callback handler)
- Add client-side AdminAuthService for communicating with new admin auth endpoints and an adminGuard
  for route protection
- Register new API routes in ApiRouter and wire server-side handlers into the router
- Implement safeguards: mask secrets in admin responses, validate provider configs, and track
  connection test results and audit logs

## 2025-11-28 - 1.2.0 - feat(tokens)

Add support for organization-owned API tokens and org-level token management

- ApiToken model: added optional organizationId and createdById fields (persisted and indexed) and
  new static getOrgTokens method
- auth.interfaces: IApiToken and ICreateTokenDto updated to include organizationId and createdById
  where appropriate
- TokenService: create token options now accept organizationId and createdById; tokens store org and
  creator info; added getOrgTokens and revokeAllOrgTokens (with audit logging)
- API: TokenApi now integrates PermissionService to allow organization managers to list/revoke
  org-owned tokens; GET /api/v1/tokens accepts organizationId query param and token lookup checks
  org management permissions
- Router: PermissionService instantiated and passed to TokenApi
- UI: api.service types and methods updated — IToken and ITokenScope include
  organizationId/createdById; getTokens and createToken now support an organizationId parameter and
  scoped scopes
- .gitignore: added stories/ to ignore

## 2025-11-28 - 1.1.0 - feat(registry)

Add hot-reload websocket, embedded UI bundling, and multi-platform Deno build tasks

Introduce a ReloadSocketManager and client ReloadService for automatic page reloads when the server
restarts. Serve UI assets from an embedded generated file and add Deno tasks to bundle the UI and
compile native binaries for multiple platforms. Also update dev watch workflow and ignore generated
embedded UI file.

- Add ReloadSocketManager (ts/reload-socket.ts) to broadcast a server instance ID to connected
  clients for hot-reload.
- Integrate reload socket into StackGalleryRegistry and expose WebSocket upgrade endpoint at
  /ws/reload.
- Add Angular ReloadService (ui/src/app/core/services/reload.service.ts) to connect to the reload WS
  and trigger page reloads with exponential reconnect.
- Serve static UI files from an embedded generated module (getEmbeddedFile) and add SPA fallback to
  index.html.
- Ignore generated embedded UI file (ts/embedded-ui.generated.ts) in .gitignore.
- Add Deno tasks in deno.json: bundle-ui, bundle-ui:watch, compile targets (linux/mac x64/arm64) and
  a release task to bundle + compile.
- Update package.json watch script to run BACKEND, UI and BUNDLER concurrently (deno task
  bundle-ui:watch).

## 2025-11-28 - 1.0.1 - fix(smartdata)

Bump @push.rocks/smartdata to ^7.0.13 in deno.json

- Updated deno.json imports mapping for @push.rocks/smartdata from ^7.0.9 to ^7.0.13

## 2025-11-28 - 1.0.0 - Initial release

Release with core features, UI, and project scaffolding.

- Implemented account settings and API tokens management.
  - SettingsComponent: user profile management (display name updates, password change).
  - TokensComponent: create and revoke API tokens.
- Application layout and navigation:
  - LayoutComponent for consistent layout, navigation, and user session display.
  - Main entry points added (index.html, main.ts).
- UI and styling:
  - Integrated Tailwind CSS for responsive design and styling.
  - UI updates and refinements.
  - Integrated toast notifications for user feedback.
- Code quality and tooling:
  - Refactored code structure for improved readability and maintainability.
  - Configured TypeScript with strict type checking and module resolution.
  - Dependency updates and fixes.

## 2025-11-27 - 2025-11-28 - unknown -> 1.0.0 - housekeeping / duplicate commits

Minor housekeeping and duplicate commits consolidated into the 1.0.0 release.

- Added initial README with project overview, features, and setup instructions.
- Consolidated a duplicate "feat: add account settings and API tokens management" commit (unknown
  version) into the 1.0.0 release.
- Miscellaneous UI tweaks and dependency updates.