|
|
@@ -6,7 +6,25 @@ adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
|
|
|
|
|
|
## [Unreleased]
|
|
|
|
|
|
-Nothing scheduled.
|
|
|
+### Added
|
|
|
+
|
|
|
+- **`OIDC_ENABLED` kill-switch for dev / testing.** New env var (default
|
|
|
+ `true`) that, when set to `false` / `0` / `no` / `off` (case-insensitive,
|
|
|
+ trimmed), forces `OidcClient::isConfigured()` to return false even when
|
|
|
+ every `ENTRA_*` var is populated. `/auth/login` and `/auth/callback` both
|
|
|
+ short-circuit to the same operator-facing 503 config page, with copy
|
|
|
+ that distinguishes "disabled by flag" from "not configured". Lets dev /
|
|
|
+ on-prem deployments route everyone through `LOCAL_ADMIN_*` without
|
|
|
+ unsetting the Entra creds in `.env`. New `OidcClient::isExplicitlyDisabled()`
|
|
|
+ helper and 6 lock-in tests in `tests/Auth/OidcClientTest.php`.
|
|
|
+
|
|
|
+### Changed
|
|
|
+
|
|
|
+- **Production bootstrap refuses to start with no sign-in method.**
|
|
|
+ `public/index.php` now aborts with a 503 + `Retry-After: 30` and an
|
|
|
+ `error_log` line when `APP_ENV=production` and neither OIDC nor
|
|
|
+ `LOCAL_ADMIN_*` is enabled. Stops a fully unreachable instance from
|
|
|
+ shipping silently after a misconfigured deploy.
|
|
|
|
|
|
## [0.22.0] — 2026-05-07
|
|
|
|
chiappa