cca.git - [WIP] Co-curricular activities selection site (computer science internal assessment)

	Commit message (Collapse)	Author	Age	Files	Lines
*	iadocs, etc.: Add source to appendix	Runxi Yu	2024-10-06	1	-0/+1
\|
*	.gitignore: Ignore vendor	Runxi Yu	2024-10-06	1	-0/+1
\|
*	.gitignore: Only ignore dist/build in rootv0.1.5	Runxi Yu	2024-10-06	1	-2/+2
\|
*	*: Overhaul structure again and embed everything	Runxi Yu	2024-10-06	1	-0/+1
\| \| \| \| \| \| \| \|	- Remove sub-Makefiles; recursive make is annoying - Just use one top-level Makefile that builds everything - Embed templates and minified static resources into the binary - Embed all compiled documentation into the binary and serve - Embed all source into the binary and serve
*	*: Further restructuring	Runxi Yu	2024-10-05	1	-1/+1
\|
*	*: Call Graph API for department information	Runxi Yu	2024-09-07	1	-0/+1
\| \| \| \| \| \| \| \| \| \| \| \|	I am using a hybrid flow with "id_token" for OpenID Connect and "code" for an Authorization Code. I would use "token" too but that doesn't seem to be supported for standard web-apps and could result in strange session-hijacking issues. We still need PKCE sometime in the future; however it's not a priority: the worst attack someone could pull off is to use a different user's Authorization Code and steal a Department, which probably isn't too big of a deal as the Authorization Code should be secret anyways.
*	*: Basic authentication and templates	Runxi Yu	2024-09-07	1	-0/+1
	These are imported from FBFP and slightly modified to be specific to YKPS (while not being hard to port to other environments that use APIs that use OAUTH 2.0). Some code is also simplified. Database code still needs an audit, and things are not tested yet.