fix: oidc login fallback for privacy browsers via redis state store#434
Merged
Movm merged 13 commits intotest-branchfrom Jan 30, 2026
Merged
fix: oidc login fallback for privacy browsers via redis state store#434Movm merged 13 commits intotest-branchfrom
Movm merged 13 commits intotest-branchfrom
Conversation
Add docling-serve (pre-built CPU image from quay.io) as a Docker sidecar for local PDF/DOCX/PPTX/image-to-Markdown conversion, replacing reliance on the Mistral cloud OCR API. - Add doclingIntegration.ts client calling /v1/convert/file - Route OCR via OCR_PROVIDER env var (default: mistral) - Fall back to Mistral when Docling is unavailable or errors - Add ocr service to docker-compose.prod.yml with healthcheck - Fix PDF.js worker path using createRequire for monorepo hoisting
feat(api): add Docling-Serve sidecar for self-hosted document OCR
dorny/paths-filter needs a previous commit to compare against. With fetch-depth: 1 (default), workflow_dispatch has no 'before' ref, causing it to fall back to last-commit-only detection.
…-depth fix(ci): fetch 2 commits for paths-filter on workflow_dispatch
Wrap the custom user notebooks UI and fetchQACollections call behind import.meta.env.DEV so they only render/run in dev mode.
…rompt-cleanup refactor: hide Meine Notebooks section in production
…utton - Include custom_prompt in getProfile() response (was silently dropped) - Replace autosave with explicit Save button for custom_prompt - Track dirty state so button only shows when prompt has unsaved changes
…rompt-cleanup fix: persist custom_prompt and replace autosave with save button
Vorarbeit (notebook enrich) should not be a feature icon in the balanced mode dropdown.
…ure-icon fix: comment out Vorarbeit button from model selector dropdown
Privacy browsers (Ecosia, Brave, etc.) block session cookies on cross-origin redirects from Keycloak, causing session_not_found errors. Store OIDC state data in Redis keyed by the cryptographic state param and recover it on callback when the cookie is missing.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
stateURL parameterTest plan
npm run buildpasses for API packagegruenerator.eustill works (cookie path unchanged)Redis state fallback successfuloidc:state:*is consumed (deleted) after callback