feat(auth): replace hand-rolled auth with Ory Kratos — phase 2 backend · 81578f6e27 - honeyDueAPI

feat(auth): replace hand-rolled auth with Ory Kratos — phase 2 backend

Backend CI / Test (push) Has been cancelled

Details

Backend CI / Contract Tests (push) Has been cancelled

Details

Backend CI / Lint (push) Has been cancelled

Details

Backend CI / Secret Scanning (push) Has been cancelled

Details

Backend CI / Build (push) Has been cancelled

Details

Delegates all credential management (login, register, password reset,
email verification, social sign-in) to Ory Kratos. The Go API now acts
as a resource server: the new KratosAuth middleware validates sessions
against the Kratos whoami endpoint, writes the local User mirror into
Echo context, and all existing domain handlers continue working
unchanged. Hand-rolled token auth, AuthToken model, apple_auth/
google_auth services, and the auth refresh flow are removed. Tests are
updated to use the fake-token middleware pattern so existing integration
assertions require no rewrite.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

This commit is contained in:

Trey t

2026-05-18 17:55:56 -05:00

parent b66151ddd9

commit 81578f6e27

36 changed files with 927 additions and 7002 deletions

internal/services/auth_service.go

+32 -945

View File

File diff suppressed because it is too large Load Diff