Commits
build_url forces a trailing slash on the base path, turning
/oauth/authorize into /oauth/authorize/ which breaks Bluesky's
OAuth endpoint. Use url::Url::query_pairs_mut() directly to
append query params without modifying the path.
- Replace manual format! string interpolation for authorization URL
with atproto_identity::url::build_url for proper URL encoding
- Add scope() function to server module reading OAUTH_SCOPE env var
- Replace hardcoded scope strings in init_oauth, client_metadata, and
localhost client_id fallback
- Update AtprotoOAuthConfig::scope docs noting server-side override
- Add tracing::error!() calls at all error sites in server.rs
- Add optional zeroize feature with ZeroizeOnDrop on ActiveSession
- Fix move-out-of-Drop errors when zeroize feature is enabled
- Add workspace dependency entry for atproto-oauth-dioxus
- Remove redundant serde features (already in workspace definition)
Uses atproto_identity::resolve::InnerIdentityResolver which supports
all DID methods (plc, web, webvh) instead of a PLC-only JSON parser.
Also enables hickory-dns by default to match other workspace crates.
Dioxus fullstack integration for AT Protocol OAuth authentication
with turnkey PKCE + DPoP flow. Provides:
- AtprotoOAuthProvider context component (session state + localStorage)
- AtprotoOAuthCallback component for the OAuth redirect
- do_atproto_login / do_atproto_logout hooks
- #[server] init_atproto_oauth / complete_atproto_oauth
- #[get] /oauth/client-metadata.json endpoint
- get_active_session() for downstream DPoP-authenticated PDS calls
- Feature-gated server deps (server, hickory-dns)
Enhance atpmcp tool descriptions with actionable language, usage guidance, examples, and clearer error documentation. Add lenient_optional_format serde module to atproto-record for tolerating malformed datetime values during deserialization. Update tile CSP to replace deprecated plugin-types directive with media-src. Add test for malformed createdAt field in calendar events.
Add the `atpdid` binary, a unified CLI tool for AT Protocol DID
operations including key management (generate, inspect), identity
resolution, PLC directory operations (verify, create, update, submit),
and did:webvh document management (verify, create, update).
Extend the PLC module with audit log fetching and operation submission,
add new error variants for PLC submission and audit log failures, and
introduce did:webvh genesis document creation and update entry support
with Ed25519 Data Integrity proofs.
Also adds a calendar event record field to atproto-record.
Update all references from the old tangled.sh/@smokesignal.events/atproto-identity-rs location to the new tangled.org/ngerakines.me/atproto-crates home.
* Remove unused `ammonia` workspace dependency from root Cargo.toml
* Remove unused `urlencoding` dependency from atproto-identity
* Narrow tokio features in atproto-jetstream from "full" to ["sync", "time"]
* Make tracing-subscriber optional in atproto-jetstream, gating it behind the clap feature alongside tokio/signal
* Remove unused parking_lot dependency from tokio in Cargo.lock
- Add tracing::error!() calls at all error sites in server.rs
- Add optional zeroize feature with ZeroizeOnDrop on ActiveSession
- Fix move-out-of-Drop errors when zeroize feature is enabled
- Add workspace dependency entry for atproto-oauth-dioxus
- Remove redundant serde features (already in workspace definition)
Dioxus fullstack integration for AT Protocol OAuth authentication
with turnkey PKCE + DPoP flow. Provides:
- AtprotoOAuthProvider context component (session state + localStorage)
- AtprotoOAuthCallback component for the OAuth redirect
- do_atproto_login / do_atproto_logout hooks
- #[server] init_atproto_oauth / complete_atproto_oauth
- #[get] /oauth/client-metadata.json endpoint
- get_active_session() for downstream DPoP-authenticated PDS calls
- Feature-gated server deps (server, hickory-dns)
Enhance atpmcp tool descriptions with actionable language, usage guidance, examples, and clearer error documentation. Add lenient_optional_format serde module to atproto-record for tolerating malformed datetime values during deserialization. Update tile CSP to replace deprecated plugin-types directive with media-src. Add test for malformed createdAt field in calendar events.
Add the `atpdid` binary, a unified CLI tool for AT Protocol DID
operations including key management (generate, inspect), identity
resolution, PLC directory operations (verify, create, update, submit),
and did:webvh document management (verify, create, update).
Extend the PLC module with audit log fetching and operation submission,
add new error variants for PLC submission and audit log failures, and
introduce did:webvh genesis document creation and update entry support
with Ed25519 Data Integrity proofs.
Also adds a calendar event record field to atproto-record.
* Remove unused `ammonia` workspace dependency from root Cargo.toml
* Remove unused `urlencoding` dependency from atproto-identity
* Narrow tokio features in atproto-jetstream from "full" to ["sync", "time"]
* Make tracing-subscriber optional in atproto-jetstream, gating it behind the clap feature alongside tokio/signal
* Remove unused parking_lot dependency from tokio in Cargo.lock