You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1.0 KiB
1.0 KiB
AI Session Summary
session: 2026-07-03-ldap-login-fix
project: lagercloud.com/ldap
version: 1.2.0
status: ready
next: Token revocation on logout
previous: 2026-07-01-ldap-migration
agent: Cursor
branch: feat/jwt-refresh
TL;DR
- Tambah endpoint JWT refresh token
- Perbaiki 401 loop saat token expired
- Update docs API auth
Lanjut dari sini
- Token revocation on logout
- Integrasi refresh ke client Super App
Backlog: todo.md
Jangan
- Jangan simpan refresh token di localStorage (pakai httpOnly cookie)
- Jangan revert error code TOKEN_EXPIRED di middleware
Detail
Bug fix
| Bug | Root cause | Fix | Ref |
|---|---|---|---|
| 401 loop | Middleware throw unhandled | Return 401 + TOKEN_EXPIRED | ISS-001 |
API
| Method | Endpoint | Perubahan |
|---|---|---|
| POST | /api/v1/auth/refresh |
Baru |
On-demand: ../AGENTS.md | todo.md | api/