Skip to content

fix: drop OIDC modules extracted into nova_auth_oidc#11

Merged
Taure merged 1 commit into
novaframework:mainfrom
Taure:fix/drop-extracted-oidc-modules
May 27, 2026
Merged

fix: drop OIDC modules extracted into nova_auth_oidc#11
Taure merged 1 commit into
novaframework:mainfrom
Taure:fix/drop-extracted-oidc-modules

Conversation

@Taure
Copy link
Copy Markdown
Contributor

@Taure Taure commented May 27, 2026

nova_auth_oidc and nova_auth_oidc_jwt were extracted into the dedicated nova_auth_oidc application, but their pre-extraction copies were left here. Any release that depends on both nova_auth and nova_auth_oidc then fails with duplicate-module errors — relx refuses to assemble ("Duplicated modules: nova_auth_oidc, nova_auth_oidc_jwt"), and rebar3 dialyzer hard-fails ("Duplicates of module nova_auth_oidc_jwt").

This removes the stale copies; the dedicated app is the source of truth. Nothing inside nova_auth references either module.

Found while wiring nova_auth_oidc into a Nova app (triagebot).

@Taure
fix: drop OIDC modules extracted into nova_auth_oidc
1e3423f 
nova_auth_oidc and nova_auth_oidc_jwt were moved to the dedicated
nova_auth_oidc application, but their pre-extraction copies were left
here. Shipping both makes any release that depends on nova_auth_oidc
fail with duplicate-module errors (relx, and rebar3 dialyzer). Remove
the stale copies; the dedicated app is the source of truth.
Taure added a commit to Taure/triagebot that referenced this pull request May 27, 2026
@Taure
build: pin all deps to immutable refs
b6df84e 
Replace every moving branch pin with a tag or commit SHA so the release
is reproducible and no dependency can shift under us:

- gakudan_liveboard -> tag v0.1.0 (just released)
- nova_auth_oidc -> tag v0.1.0
- nova -> SHA (Nova is pre-release; jsonlogger fork)
- datastar -> SHA (pre-release)
- nova_auth -> fork SHA (drops the extracted OIDC modules;
  upstream fix tracked in novaframework/nova_auth#11)
Taure added a commit to Taure/triagebot that referenced this pull request May 27, 2026
@Taure
feat: mount gakudan_liveboard dashboard behind OIDC auth (#11)
d8e3bbd 
* feat: mount gakudan_liveboard dashboard behind OIDC auth

Embed the gakudan_liveboard live console in triagebot, gated by Google
OIDC login plus an email-domain allowlist so the dashboard is not public.

- bump gakudan v0.1.3 -> v0.1.30; add gakudan_liveboard, datastar,
  telemetry and nova_auth_oidc deps and app entries
- triagebot_oidc_config: nova_auth_oidc provider config from env
- triagebot_dashboard_auth: session + domain-allowlist route security
  (no session -> 302 login, disallowed domain -> 403)
- triagebot_auth_controller: adapt binary-keyed bindings to the atom
  provider key nova_auth_oidc_controller expects
- router: public /auth login/callback + self-hosted assets, protected
  dashboard route group
- pin nova_auth to a fork that drops the nova_auth_oidc/_jwt modules it
  still ships post-extraction (they collide with the dedicated app and
  break relx + dialyzer)
- tests for the auth decision, binding adapter and OIDC config

* build: pin all deps to immutable refs

Replace every moving branch pin with a tag or commit SHA so the release
is reproducible and no dependency can shift under us:

- gakudan_liveboard -> tag v0.1.0 (just released)
- nova_auth_oidc -> tag v0.1.0
- nova -> SHA (Nova is pre-release; jsonlogger fork)
- datastar -> SHA (pre-release)
- nova_auth -> fork SHA (drops the extracted OIDC modules;
  upstream fix tracked in novaframework/nova_auth#11)
@Taure Taure merged commit 36848e1 into novaframework:main May 27, 2026
16 checks passed
@Taure Taure mentioned this pull request May 27, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Taure