Rosa Gutierrez
c059e0b216
Add JSON format support to session destroy for native API clients
...
This is so that native API clients can get the session record deleted
server-side. They still need to take care of clearing any cookies
they've set in web views.
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com >
2026-01-27 19:59:30 +01:00
Stanko K.R.
23fc7b594f
Split tests by controller or responsibility
2025-12-19 19:21:57 +01:00
Fernando Olivares
be447f90ba
Move magic link api tests to their own files
2025-12-19 19:21:57 +01:00
Fernando Olivares
6be20e215b
Rename test to clarify what they're about
2025-12-19 19:21:57 +01:00
Fernando Olivares
6e8d6a3df0
Update to always return a pending auth token for JSON responses.
2025-12-19 19:21:57 +01:00
Fernando Olivares
fbf829b346
Update API test for cross code
2025-12-19 19:21:57 +01:00
Fernando Olivares
a2333623b6
Add unit tests for the new endpoints
2025-12-19 19:21:57 +01:00
Stanko K.R.
c0a0786539
Return the session cookie
...
We had a call about this. In short, we could reuse access tokens but then the user would see access tokens for every mobile device they have without any indication as to what is going on. So, since this really is just logging in instead of an integration which seems to be the primary purpose of access tokens, we can just use our regular session cookie for authentication.
2025-12-19 19:21:57 +01:00
Stanko K.R.
58a92f0bb7
Add tests for sign in via API
2025-12-19 19:21:57 +01:00
Stanko K.R.
ae03f2b283
Move tests into their controller tests
2025-12-10 09:23:52 +01:00
Stanko K.R.
259707bf70
Fix identity tests
2025-12-10 09:23:52 +01:00
Jay Ohms
26fc9ecad4
Add an /identity.json endpoint to obtain the identity accounts and users
2025-12-10 09:23:52 +01:00
David Heinemeier Hansson
3f393c1423
Include card description and tags
2025-12-10 09:23:52 +01:00
David Heinemeier Hansson
a8dc4fb310
Excess whitespace
2025-12-10 09:23:52 +01:00
Jay Ohms
680f9c0c4d
Add top-level API index support for tags
2025-12-10 09:23:52 +01:00
Jay Ohms
5ad7b973cb
Add API support for users
2025-12-10 09:23:52 +01:00
David Heinemeier Hansson
983a19fd8a
Create cards via API
2025-12-10 09:23:52 +01:00
David Heinemeier Hansson
f0c0a87c74
Return json URLs for API actions
2025-12-10 09:23:52 +01:00
David Heinemeier Hansson
129b81984f
Creating a new board will return the location header
2025-12-10 09:23:52 +01:00
David Heinemeier Hansson
0ce3a85778
Only allow writing when the access token has permission
2025-12-10 09:23:52 +01:00
David Heinemeier Hansson
b53c0a5385
Correct
2025-12-10 09:23:52 +01:00
David Heinemeier Hansson
d384971ea2
Test the boards API
2025-12-10 09:23:52 +01:00
David Heinemeier Hansson
a81c681a8d
Add access token authentication via HTTP AUTHORIZATION bearer header
2025-12-10 09:23:52 +01:00