* chore: update copyright year in license headers
* Revert "chore: update copyright year in license headers"
This reverts commit 3e58129c431b9a491089ce36b908f9bb6ba38ed3.
* chore: update copyright year in license headers
* fix: sort go imports
* fix: add missing license headers
* feat(filters): skip duplicates
* fix: add interface instead of any
* fix(filters): tonullint
* feat(filters): skip dupes check month day
* chore: cleanup
* feat(db): set autoincrement id
* feat(filters): add repack and proper to dupe profile
* feat(filters): add default dupe profiles
* feat(duplicates): check audio and website
* feat(duplicates): update tests
* feat(duplicates): add toggles on addform
* feat(duplicates): fix sqlite upgrade path and initialize duplicate profiles
* feat(duplicates): simplify sqlite upgrade
avoiding temp table and unwieldy select. Besides, FK constraints
are turned off anyway in #229.
* feat(duplicates): change CheckIsDuplicateRelease treatment of PROPER and REPACK
"Proper" and "Repack" are not parallel to the other conditions like "Title",
so they do not belong as dedup conditions. "PROPER" means there was an issue in
the previous release, and so a PROPER is never a duplicate, even if it replaces
another PROPER. Similarly, "REPACK" means there was an issue in the previous
release by that group, and so it is a duplicate only if we previously took a
release from a DIFFERENT group.
I have not removed Proper and Repack from the UI or the schema yet.
* feat(duplicates): update postgres schema to match sqlite
* feat(duplicates): fix web build errors
* feat(duplicates): fix postgres errors
* feat(filters): do leftjoin for duplicate profile
* fix(filters): partial update dupe profile
* go fmt `internal/domain/filter.go`
* feat(duplicates): restore straightforward logic for proper/repack
* feat(duplicates): remove mostly duplicate TV duplicate profiles
Having one profile seems the cleanest. If somebody wants multiple
resolutions then they can add Resolution to the duplicate profile.
Tested this profile with both weekly episodic releases and daily
show releases.
* feat(release): add db indexes and sub_title
* feat(release): add IsDuplicate tests
* feat(release): update action handler
* feat(release): add more tests for skip duplicates
* feat(duplicates): check audio
* feat(duplicates): add more tests
* feat(duplicates): match edition cut and more
* fix(duplicates): tests
* fix(duplicates): missing imports
* fix(duplicates): tests
* feat(duplicates): handle sub_title edition and language in ui
* fix(duplicates): tests
* feat(duplicates): check name against normalized hash
* fix(duplicates): tests
* chore: update .gitignore to ignore .pnpm-store
* fix: tests
* fix(filters): tests
* fix: bad conflict merge
* fix: update release type in test
* fix: use vendored hot-toast
* fix: release_test.go
* fix: rss_test.go
* feat(duplicates): improve title hashing for unique check
* feat(duplicates): further improve title hashing for unique check with lang
* feat(duplicates): fix tests
* feat(duplicates): add macros IsDuplicate and DuplicateProfile ID and name
* feat(duplicates): add normalized hash match option
* fix: headlessui-state prop warning
* fix(duplicates): add missing year in daily ep normalize
* fix(duplicates): check rejections len
---------
Co-authored-by: ze0s <ze0s@riseup.net>
* feat(filters): RED and OPS fetch record label from API
* test: add record label to RED and OPS test data
* refactor: record label check
---------
Co-authored-by: ze0s <ze0s@riseup.net>
* feat(lists): integrate Omegabrr
* feat(lists): add missing lists index
* feat(lists): add db repo
* feat(lists): add db migrations
* feat(lists): labels
* feat(lists): url lists and more arrs
* fix(lists): db migrations client_id wrong type
* fix(lists): db fields
* feat(lists): create list form wip
* feat(lists): show in list and create
* feat(lists): update and delete
* feat(lists): trigger via webhook
* feat(lists): add webhook handler
* fix(arr): encode json to pointer
* feat(lists): rename endpoint to lists
* feat(lists): fetch tags from arr
* feat(lists): process plaintext lists
* feat(lists): add background refresh job
* run every 6th hour with a random start delay between 1-35 seconds
* feat(lists): refresh on save and improve logging
* feat(lists): cast arr client to pointer
* feat(lists): improve error handling
* feat(lists): reset shows field with match release
* feat(lists): filter opts all lists
* feat(lists): trigger on update if enabled
* feat(lists): update option for lists
* feat(lists): show connected filters in list
* feat(lists): missing listSvc dep
* feat(lists): cleanup
* feat(lists): typo arr list
* feat(lists): radarr include original
* feat(lists): rename ExcludeAlternateTitle to IncludeAlternateTitle
* fix(lists): arr client type conversion to pointer
* fix(actions): only log panic recover if err not nil
* feat(lists): show spinner on save
* feat(lists): show icon in filters list
* feat(lists): change icon color in filters list
* feat(lists): delete relations on filter delete
* feat(auth): implement oidc
* refactor(auth): centralize OIDC state cookie handling
* fix(web): resolve unused error variables in route handlers
* docs(readme): add OIDC authentication feature to list
* fix(auth): improve OIDC cookie handling for reverse proxy setups
The OIDC state cookie's Secure flag is now properly set when running behind a reverse proxy by checking both direct TLS and X-Forwarded-Proto header. This fixes authentication issues in common setups where:
- autobrr runs behind a reverse proxy that terminates HTTPS
- local development environments without TLS
- mixed protocol environments (internal HTTP, external HTTPS)
* fix: use crypt/random if argon2id fails
* feat(auth): show both login options when user exists in db
if user doesn't exist, e.g. canOnboard=true then we only show the OIDC button, since regular login makes no sense in that case
If user does not exist in db and the user wants to create a local user, OIDC needs to be disabled first
* feat(auth): improve OIDC provider initialization with discovery logging
* revert(issuer): do not remove trailing slash
* feat(auth): improve OIDC username resolution with additional claims
* fix(auth): handle OIDC issuer URLs with and without trailing slashes
When initializing the OIDC provider, automatically retry with/without trailing
slash if the first attempt fails.
- First attempts with original issuer URL
- If fails with trailing slash, retries without
- If fails without trailing slash, retries with
* feat(oidc): add gorilla sessions store for secure state management
Add gorilla sessions store to handle encrypted state cookies in OIDC flow,
while removing redundant session validation checks
Co-authored-by: Kyle Sanderson <kyle.leet@gmail.com>
* fix(auth): prevent duplicate OIDC state cookies for authenticated sessions
Modify OIDC config handler to check for existing authenticated sessions
before setting state cookie. Still returns OIDC enabled status to maintain
UI state, but prevents unnecessary cookie creation for authenticated users.
* feat(oidc): use random secret for temporary state cookies
Co-authored-by: Kyle Sanderson <kyle.leet@gmail.com>
* feat(auth): add rate limiting to OIDC endpoints
Co-authored-by: Kyle Sanderson <kyle.leet@gmail.com>
* fix(auth): validate OIDC authorization code presence in callback
Co-authored-by: Kyle Sanderson <kyle.leet@gmail.com>
* fix(auth): properly handle OIDC session errors
Improve error handling in OIDC login flow by properly handling cookie store
session errors. Return HTTP 500 if session cannot be retrieved instead of
silently continuing with potentially invalid state.
Co-authored-by: Kyle Sanderson <kyle.leet@gmail.com>
* feat(auth): track and display authentication method for oidc and password logins
* fix: tests
* docs(readme): add environment variable section
* go mod tidy
* chore: log style and errors
---------
Co-authored-by: Kyle Sanderson <kyle.leet@gmail.com>
Co-authored-by: ze0s <ze0s@riseup.net>
* refactor: remove baseUrl from api calls and sseBaseUrl
* refactor: set cookie session to '/'.
Since that's where the api endpoint is that way we set it to the root domain, we can't set it to the subfolder since the api is called directly now and not using the baseUrl.
* feat: add the baseUrl route.
When user for example is in `/autobrr` and hit reload it should just return the index.html.
* refactor: now it have to be `/autobrr`
Remove the trailing `/`, now base url is set to /autobrr aligned with other arrs.
* refactor: remove baseUrl stuff.
* refactor: use separate router for the api endpoint and the baseUrl.
I don't think we need separate router, but I didn't test it, so feel free to test it and see if it works without the separate router, the whole point was to make sure that it's not prefixed with baseUrl and I noticed that it was being called in the frontend `APIClients.ts`. So yea just check if it works without it then keep the old one.
Also removed the index since it was zombie code not being used anywhere.
* feat: Dynamic base url.
* fix: auth handler deps
* feat(http): mount web and api on baseurl
* feat(http): web api client routes
* feat(http): baseurl legacy mode
* feat(http): baseurl legacy mode test
* feat(http): add assetBaseUrl
* feat(http): try separate web handlers
* feat(http): improve file serving
* feat(http): ignore .gitkeep
* fix(assets): windows paths
* fix(assets): windows paths trimprefix
* fix(assets): windows paths join
* fix(assets): cleanup
* fix(assets): additional web route check
* feat(http): add comments
---------
Co-authored-by: ze0s <ze0s@riseup.net>
* feat(indexers): update SeedPool IRC port
* feat(indexers): SeedPool add db migration
* fix(indexers): adapt regex, tests and vars
* fix(indexers): set internal var to origin to fix parsing
---------
Co-authored-by: martylukyy <35452459+martylukyy@users.noreply.github.com>
