Pulse/internal
rcourtman 48f8473200 Fix router to allow frontend pages without authentication
When a request for /login (or any other frontend route) comes in without
proper Accept headers (like from curl or some browsers), the server was
returning 'Authentication required' text instead of serving the frontend HTML.

This is because the router was checking authentication before serving ANY
non-API route, including frontend pages like /login, /dashboard, etc.

The fix: Frontend routes should always be served without backend auth checks.
The authentication logic runs in the frontend JavaScript after the page loads.

Backend auth should only block:
- API endpoints (/api/*)
- WebSocket connections (/ws*, /socket.io/*)
- Download endpoints (/download/*)
- Special scripts (/install-*.sh, etc.)

All other routes are frontend pages that need to be served to everyone so
the login page can load and handle auth in the browser.

This fixes the integration tests where Playwright couldn't see the login
form because the server was rejecting the /login request before serving HTML.

Related to #695 (release workflow integration tests)
2025-11-12 11:30:22 +00:00
..
alerts feat: Add mdadm RAID monitoring support for host agents 2025-11-09 16:36:33 +00:00
api Fix router to allow frontend pages without authentication 2025-11-12 11:30:22 +00:00
auth Fix config backup/restore by enforcing 12-char minimum password (related to #646) 2025-11-07 22:51:55 +00:00
config Make api_tokens.json authoritative source for API tokens (fixes #685) 2025-11-11 00:17:40 +00:00
crypto Harden setup token flow and enforce encrypted persistence 2025-10-25 16:00:37 +00:00
discovery Fix discovery test Prometheus metric collision 2025-11-11 23:34:49 +00:00
dockeragent Fix critical version embedding issues for 4.26 release 2025-11-06 11:42:52 +00:00
errors Fix settings security tab navigation 2025-10-11 23:29:47 +00:00
hostagent feat: Add mdadm RAID monitoring support for host agents 2025-11-09 16:36:33 +00:00
hostmetrics Filter read-only filesystems from host agent disk metrics (related to #690) 2025-11-12 09:47:02 +00:00
logging feat: comprehensive diagnostics and observability improvements 2025-10-21 12:37:39 +00:00
mdadm feat: Add mdadm RAID monitoring support for host agents 2025-11-09 16:36:33 +00:00
metrics Add comprehensive alert system reliability improvements 2025-11-06 16:46:30 +00:00
mock Refactor: Code cleanup and localStorage consolidation 2025-11-04 21:50:46 +00:00
models feat: Add mdadm RAID monitoring support for host agents 2025-11-09 16:36:33 +00:00
monitoring Filter read-only filesystems from host agent disk metrics (related to #690) 2025-11-12 09:47:02 +00:00
notifications Fix notification manager deadlock in Stop() 2025-11-11 23:58:18 +00:00
sensors feat: Add temperature collection to pulse-host-agent (related to #661) 2025-11-07 22:54:40 +00:00
ssh/knownhosts feat(security): Add SSH output limits and improve host key management 2025-11-07 17:09:02 +00:00
system Enhance container detection for temperature SSH safeguards (refs #601) 2025-11-04 22:30:35 +00:00
tempproxy Fix temperature data intermittency caused by proxy rate limit retries 2025-11-05 10:20:15 +00:00
types Fix settings security tab navigation 2025-10-11 23:29:47 +00:00
updates Refactor update service to eliminate polling and race conditions 2025-11-11 09:33:05 +00:00
utils Refactor: Code cleanup and localStorage consolidation 2025-11-04 21:50:46 +00:00
websocket Fix P1: Add shutdown mechanism to WebSocket Hub 2025-11-07 10:20:26 +00:00