Danny Avila 68ea22813c fix: issuer validation, callback error propagation, and cleanup DRY ... - Issuer check: re-register when storedIssuer is absent or non-string instead of silently reusing. Narrows unknown type with typeof guard and inverts condition so missing issuer → fresh DCR (safer default). - OAuth callback route: call failFlow with the OAuth error when the authorization server redirects back with error= parameter, so the waiting flow receives the actual rejection instead of timing out. This lets isClientRejection match stale-client errors correctly. - Extract duplicated cleanup block to clearStaleClientIfRejected() private method, called from both returnOnOAuth and blocking paths. - Test fixes: add issuer to stored metadata in reuse tests, reset server to undefined in afterEach to prevent double-close.		2026-04-03 19:28:52 -04:00
..
controllers	🔁 fix: Pass recursionLimit to OpenAI-Compatible Agents API Endpoint (#12510)	2026-04-01 21:13:07 -04:00
middleware	🏗️ refactor: Remove Redundant Caching, Migrate Config Services to TypeScript (#12466)	2026-03-30 16:49:48 -04:00
routes	fix: issuer validation, callback error propagation, and cleanup DRY	2026-04-03 19:28:52 -04:00
services	🎯 fix: MCP Tool Misclassification from Action Delimiter Collision (#12512)	2026-04-01 22:36:21 -04:00
utils	🏗️ refactor: Remove Redundant Caching, Migrate Config Services to TypeScript (#12466)	2026-03-30 16:49:48 -04:00
cleanup.js	🧹 refactor: Tighten Config Schema Typing and Remove Deprecated Fields (#12452)	2026-03-29 01:10:57 -04:00
experimental.js	⚖️ refactor: Split Config Route into Unauthenticated and Authenticated Paths (#12490)	2026-03-31 19:22:51 -04:00
index.js	⚖️ refactor: Split Config Route into Unauthenticated and Authenticated Paths (#12490)	2026-03-31 19:22:51 -04:00
index.spec.js	🚦 fix: 404 JSON Responses for Unmatched API Routes (#11976)	2026-02-27 22:49:54 -05:00
socialLogins.js	🔐 feat: Admin Auth Support for SAML and Social OAuth Providers (#12472)	2026-03-30 22:49:44 -04:00