screentinker

mirror of https://github.com/screentinker/screentinker.git synced 2026-06-17 03:32:32 -06:00

History

ScreenTinker fab4ae909a feat(api): token management endpoints + Settings UI - routes/tokens.js: create (returns the full secret once), list (never the secret), revoke. Mounted JWT-only via api-surface.js so an API token can never mint, list or revoke tokens - no self-escalation. - Settings "API Tokens" section: create form (name + read/write/full scope), one-time secret reveal with copy, token list, revoke; i18n across en/es/fr/de/pt. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>	2026-06-12 18:45:09 -05:00
..
api-surface.js	feat(api): token management endpoints + Settings UI	2026-06-12 18:45:09 -05:00
cloudflareIps.js	fix: log real client IPs through Cloudflare instead of CF edge	2026-05-07 15:26:37 -05:00

ScreenTinker fab4ae909a feat(api): token management endpoints + Settings UI

- routes/tokens.js: create (returns the full secret once), list (never the secret),
  revoke. Mounted JWT-only via api-surface.js so an API token can never mint, list or
  revoke tokens - no self-escalation.
- Settings "API Tokens" section: create form (name + read/write/full scope), one-time
  secret reveal with copy, token list, revoke; i18n across en/es/fr/de/pt.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>

2026-06-12 18:45:09 -05:00

api-surface.js

feat(api): token management endpoints + Settings UI

2026-06-12 18:45:09 -05:00

cloudflareIps.js

fix: log real client IPs through Cloudflare instead of CF edge

2026-05-07 15:26:37 -05:00