github/OpenHands
1
0
Fork 0
mirror of https://github.com/OpenHands/OpenHands.git synced 2026-03-22 13:47:19 +08:00
Code Issues Packages Projects Releases Wiki Activity
6,312 Commits 1,217 Branches 123 Tags
d5b583e28f05da856d9fc23c4e9bd96284056de2
Commit Graph

40 Commits

Author SHA1 Message Date
Hiep Le
e02dbb8974 fix(backend): validate API key org_id during authorization to prevent cross-org access (org project) (#13468) 2026-03-19 16:09:37 +07:00
Hiep Le
db41148396 feat(backend): expose API key org_id via new GET /api/keys/current endpoint (org project) (#13469) 2026-03-19 01:46:23 +07:00
Joe Laverty
ede203add3 feat(enterprise): Bitbucket Data Center Integration (#13228) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-06 10:49:20 -06:00
Tim O'Farrell
6186685ebc Refactor user authorization: Replace domain blocklist with flexible whitelist/blacklist pattern matching (#13207) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-06 09:10:59 -07:00
Rohit Malhotra
3bf019b045 Fix mypy type errors in enterprise/server/auth and clustered_conversation_manager (#13210) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-04 18:19:01 +00:00
Rohit Malhotra
a1271dc129 Fix mypy type errors in token_manager.py and auth_token_store.py (#13179) 
Co-authored-by: openhands <openhands@all-hands.dev>
Co-authored-by: OpenHands Bot <contact@all-hands.dev>
 2026-03-03 23:37:38 +00:00
Tim O'Farrell
45b970c0dd Refactor RoleStore to fully async (#13184) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-03 16:01:20 -07:00
Tim O'Farrell
2f11f6a39a refactor(enterprise): Convert OrgMemberStore to fully async (#13173) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-03 20:26:07 +00:00
Tim O'Farrell
17347a95f8 Make load_org_token and store_org_token async in TokenManager (#13147) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-02 17:08:21 -07:00
Tim O'Farrell
e1408f7b15 Add timeout to Keycloak operations and convert OfflineTokenStore to async (#13096) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-02 01:48:45 -07:00
Tim O'Farrell
112d863287 refactor: Remove unused Google Sheets integration from UserVerifier (#13076) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-02-26 08:07:38 -07:00
Tim O'Farrell
3afeccfe7f fix: prevent token refresh deadlock with double-checked locking and timeouts (#13020) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-02-24 08:13:57 -07:00
chuckbutkus
b18568da0b Feature/permission based authorization (#12906) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-02-18 01:17:39 -05:00
Saurya Velagapudi
e38f1283ea feat(recaptcha): add user_id and email to assessment log (#12749) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-02-04 17:58:44 -08:00
Saurya Velagapudi
c355c4819f feat(recaptcha): add assessment name to logging and AssessmentResult (#12744) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-02-04 09:30:02 -08:00
chuckbutkus
fdb04dfe5d Add GitLab provider check to schedule_gitlab_repo_sync (#12680) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-01-29 23:56:36 -05:00
chuckbutkus
570ab904f6 Fix UserSettings creation from Org tables (#12635) 
Co-authored-by: openhands <openhands@all-hands.dev>
Co-authored-by: tofarr <tofarr@gmail.com>
 2026-01-28 09:35:05 -07:00
Tim O'Farrell
f327e76be7 Added explicit expired error (#12580) 2026-01-23 12:49:10 -07:00
Hiep Le
030ff59c40 feat(backend): develop post /api/organizations api (org project) (#12263) 
Co-authored-by: rohitvinodmalhotra@gmail.com <rohitvinodmalhotra@gmail.com>
Co-authored-by: openhands <openhands@all-hands.dev>
Co-authored-by: Chuck Butkus <chuck@all-hands.dev>
 2026-01-21 15:14:27 +07:00
chuckbutkus
a07fc1510b Add variable to disable duplicate email check (#12474) 2026-01-16 18:04:15 -05:00
chuckbutkus
d5e66b4f3a SAAS: Introducing orgs (phase 1) (#11265) 
Co-authored-by: openhands <openhands@all-hands.dev>
Co-authored-by: rohitvinodmalhotra@gmail.com <rohitvinodmalhotra@gmail.com>
Co-authored-by: Hiep Le <69354317+hieptl@users.noreply.github.com>
Co-authored-by: Tim O'Farrell <tofarr@gmail.com>
 2026-01-15 22:03:31 -05:00
Hiep Le
d773dd6514 feat: implement reCAPTCHA enterprise risk-based non-interactive (#12288) 2026-01-10 22:04:35 +07:00
Tim O'Farrell
5c411e7fc1 Fix circular import in gitlab_sync.py (#12334) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-01-08 22:44:18 +00:00
Hiep Le
8ddb815a89 refactor(backend): enhance storage and retrieval of blocked domains (#12273) 2026-01-07 13:41:43 +07:00
Xingyao Wang
5744f6602b Handle expired Keycloak session with user-friendly error message (#12168) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-01-05 15:04:36 +00:00
Hiep Le
63d5ceada6 feat(backend): block tld (#12240) 
Co-authored-by: sp.wack <83104063+amanape@users.noreply.github.com>
 2026-01-03 00:42:22 +07:00
Tim O'Farrell
8d0e7a92b8 ALL-4636 Resolution for connection leaks (#12144) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2025-12-23 19:02:56 +00:00
Hiep Le
f6e7628bff feat: prevent signups using email addresses with a plus sign and enforce the existing email pattern (#12124) 2025-12-24 01:48:05 +07:00
Hiep Le
5553d3ca2e feat: support blocking specific email domains (#12115) 2025-12-21 19:49:11 +07:00
Tim O'Farrell
72555e0f1c APP-193: add X-Access-Token header support to get_api_key_from_header (#11872) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2025-12-02 17:01:09 -07:00
Tim O'Farrell
fd6e0cab3f Fix V1 MCP services (Fix tavily search) (#11840) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2025-12-01 21:19:19 +00:00
chuckbutkus
b9b8d27135 Add config option to check if roles are present (#11414) 2025-11-21 16:56:19 -05:00
Ray Myers
4decd8b3e9 Provide httpx default context for OS-provided certs (#11505) 
Co-authored-by: Pierrick Hymbert <pierrick.hymbert@gmail.com>
 2025-10-27 17:54:20 -05:00
Rohit Malhotra
eb616dfae4 Refactor: rename user secrets table to custom secrets (#11525) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2025-10-27 16:58:07 +00:00
Alona
267528fa82 fix: refresh provider tokens proactively and update git URLs on resume (#11296) 2025-10-22 01:19:08 +07:00
Tim O'Farrell
f292f3a84d V1 Integration (#11183) 
Co-authored-by: openhands <openhands@all-hands.dev>
Co-authored-by: sp.wack <83104063+amanape@users.noreply.github.com>
Co-authored-by: Engel Nyst <enyst@users.noreply.github.com>
 2025-10-14 02:16:44 +00:00
Rohit Malhotra
c034cc5dfb Refactor: move helper function to avoid circular imports (#11310) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2025-10-10 12:40:03 -04:00
sp.wack
eb4dacb577 Fix ruff formatting in enterprise token_manager.py (#10901) 2025-09-09 18:45:45 +00:00
Tim O'Farrell
fc29815aa0 Value logged as error should be info (#10831) 2025-09-09 08:48:29 -06:00
Ray Myers
e37f7b0e0f Enterprise code and docker build (#10770) 2025-09-04 15:44:54 -04:00