13 Commits

Author	SHA1	Message	Date
abhinavDhulipala	7971a64e63	fix(setup): db migrate hard fail and correct ini env (#3946)	2026-04-04 16:22:19 -07:00
Waleed	42fb434354	fix(encryption): specify authTagLength on all AES-GCM cipher/decipher calls (#3883) ... * fix: specify authTagLength in AES-GCM decipheriv calls Fixes missing authTagLength parameter in createDecipheriv calls using AES-256-GCM mode. Without explicit tag length specification, the application may be tricked into accepting shorter authentication tags, potentially allowing ciphertext spoofing. CWE-310: Cryptographic Issues (gcm-no-tag-length) * fix: specify authTagLength on createCipheriv calls for AES-GCM consistency Complements #3881 by adding explicit authTagLength: 16 to the encrypt side as well, ensuring both cipher and decipher specify the tag length. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * refactor: clean up crypto modules - Fix error: any → error: unknown with proper type guard in encryption.ts - Eliminate duplicate iv.toString('hex') calls in both encrypt functions - Remove redundant string split in decryptApiKey (was splitting twice) Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * new turborepo version --------- Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com> Co-authored-by: Lakee Sivaraya <71339072+lakeesiv@users.noreply.github.com> Co-authored-by: Vikhyath Mondreti <vikhyath@simstudio.ai> Co-authored-by: Vikhyath Mondreti <vikhyathvikku@gmail.com> Co-authored-by: Siddharth Ganesan <33737564+Sg312@users.noreply.github.com> Co-authored-by: NLmejiro <kuroda.k1021@gmail.com>	2026-04-01 10:46:58 -07:00
Theodore Li	5ba3118495	feat(byok-migration) byok migration script (#3584) ... * Add byok migration script * Fix lint * Add skipping if byok already provided * Fix lint --------- Co-authored-by: Theodore Li <theo@sim.ai>	2026-03-14 16:11:21 -04:00
Lakee Sivaraya	e24c824c9a	feat(tables): added tables (#2867) ... * updates * required * trashy table viewer * updates * updates * filtering ui * updates * updates * updates * one input mode * format * fix lints * improved errors * updates * updates * chages * doc strings * breaking down file * update comments with ai * updates * comments * changes * revert * updates * dedupe * updates * updates * updates * refactoring * renames & refactors * refactoring * updates * undo * update db * wand * updates * fix comments * fixes * simplify comments * u[dates * renames * better comments * validation * updates * updates * updates * fix sorting * fix appearnce * updating prompt to make it user sort * rm * updates * rename * comments * clean comments * simplicifcaiton * updates * updates * refactor * reduced type confusion * undo * rename * undo changes * undo * simplify * updates * updates * revert * updates * db updates * type fix * fix * fix error handling * updates * docs * docs * updates * rename * dedupe * revert * uncook * updates * fix * fix * fix * fix * prepare merge * readd migrations * add back missed code * migrate enrichment logic to general abstraction * address bugbot concerns * adhere to size limits for tables * remove conflicting migration * add back migrations * fix tables auth * fix permissive auth * fix lint * reran migrations * migrate to use tanstack query for all server state * update table-selector * update names * added tables to permission groups, updated subblock types --------- Co-authored-by: Vikhyath Mondreti <vikhyath@simstudio.ai> Co-authored-by: waleed <walif6@gmail.com>	2026-02-19 13:11:35 -08:00
Waleed	ac991d4b54	fix(sso): removed provider specific OIDC logic from SSO registration & deregistration scripts (#2896) ... * fix(sso): updated registration & deregistration script for explicit support for Entra ID * cleanup * ack PR comment * ack PR comment * tested edge cases, ack'd PR comments * remove trailing slash	2026-01-19 19:23:50 -08:00
Waleed	9502227fd4	fix(sso): add missing deps to db container for running script (#2746)	2026-01-09 09:42:13 -08:00
Waleed	10692b5e5a	fix(db): remove overly complex db connection logic (#1538)	2025-10-02 19:54:32 -07:00
Waleed	fa9c97816b	fix(db): add more options for SSL connection, add envvar for base64 db cert (#1533)	2025-10-02 15:53:45 -07:00
Waleed	ace83ebcae	feat(cmdk): added knowledgebases to the cmdk modal (#1530)	2025-10-01 21:21:42 -07:00
Waleed	980a6d8347	improvement(db): enforce SSL everywhere where a DB connection is established (#1522) ... * improvement(db): enforce SSL everywhere where a DB connection is established * remove extraneous comment	2025-10-01 19:09:08 -07:00
Waleed	6e63eafb79	improvement(db): remove vercel, remove railway, remove crons, improve DB connection config (#1519) ... * improvement(db): remove vercel, remove railway, remove crons, improve DB connection config * remove NEXT_PUBLIC_VERCEL_URL * remove db url fallbacks * remove railway & more vercel stuff --------- Co-authored-by: waleed <waleed>	2025-10-01 16:37:13 -07:00
Waleed	bf1c178282	feat(sso): add support for login with SAML/SSO (#1489) ... * feat(sso): added login with SAML/SSO * restore env * fixed login styling * upgrade deps, update UI * more styling improvements * reran migrations, tested with script * improvement(auth): created SSO page * improvement(auth): remove email option for SSO if not enabled * cleanup * cleaned up, added documentation for SSO/SAML config + tested registering either one with script and UI form * cleanup * ack PR comments * move sso known providers to consts --------- Co-authored-by: waleed <waleed> Co-authored-by: Emir Karabeg <emirkarabeg@berkeley.edu>	2025-09-29 20:05:26 -07:00
Vikhyath Mondreti	9de7a00373	improvement(code-structure): move db into separate package (#1364) ... * improvement(code-structure): move db into separate package * make db separate package * remake bun lock * update imports to not maintain two separate ones * fix CI for tests by adding dummy url * vercel build fix attempt * update bun lock * regenerate bun lock * fix mocks * remove db commands from apps/sim package json	2025-09-17 15:41:13 -07:00