Archive/screentinker
1
0
Fork 0
mirror of https://github.com/screentinker/screentinker.git synced 2026-05-15 07:32:23 -06:00
Code Issues Actions Packages Projects Releases Wiki Activity
screentinker/frontend/js
History
ScreenTinker 4392bb460a Add DISABLE_REGISTRATION env var to block public sign-ups 
When DISABLE_REGISTRATION=true (or 1), POST /api/auth/register returns
403 with a clear error. OAuth endpoints (/google, /microsoft) also
refuse to auto-create new accounts — existing OAuth users can still
sign in. First-user setup (empty users table) is always allowed so a
fresh install can still be initialized.

GET /api/auth/config now returns registration_enabled so the login
view can hide the "Create Account" button and the trial banner when
registration is off. Absence of the flag is treated as enabled for
back-compat with older servers.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
2026-04-22 19:35:32 -05:00
..
components QA fixes: toast aria-live + scope playlist flex-wrap to mobile 2026-04-21 16:00:41 -05:00
views Add DISABLE_REGISTRATION env var to block public sign-ups 2026-04-22 19:35:32 -05:00
api.js Settings: add account profile + password change UI 2026-04-21 19:13:20 -05:00
app.js Mobile: public-facing pages (landing + login) 2026-04-21 18:52:53 -05:00
i18n.js Initial open source release 2026-04-08 12:14:53 -05:00
socket.js Initial open source release 2026-04-08 12:14:53 -05:00
utils.js Security audit remediation: auth, IDOR, XSS, hardening 2026-04-11 22:48:07 -05:00