Docker/Maybe
Docker/Maybe
1
0
Fork 0
mirror of https://github.com/maybe-finance/maybe.git synced 2025-07-19 05:09:38 +02:00
Code Issues Releases Activity Actions 1
Maybe/db
History
Josh Pigford 9336719242 Add secure OAuth2-based mobile authentication 
- Replace API keys with OAuth2 tokens for mobile apps
- Add device tracking and management for mobile sessions
- Implement 30-day token expiration with refresh tokens
- Add MFA/2FA support for mobile login
- Create dedicated auth endpoints (signup/login/refresh)
- Skip CSRF protection for API endpoints
- Return plaintext tokens (not hashed) in responses
- Track devices with unique IDs and metadata
- Enable seamless native mobile experience without OAuth redirects

This provides enterprise-grade security for the iOS/Android apps while maintaining a completely native authentication flow.

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>
2025-06-18 08:20:22 -05:00
..
migrate Add secure OAuth2-based mobile authentication 2025-06-18 08:20:22 -05:00
seeds Add comprehensive API v1 with OAuth and API key authentication (#2389) 2025-06-17 15:57:05 -05:00
schema.rb Add secure OAuth2-based mobile authentication 2025-06-18 08:20:22 -05:00
seeds.rb Benchmarking setup (#2366) 2025-06-14 11:53:53 -04:00