jubnl af10ab1c93 fix: add /mcp to open-CORS pre-middleware ...

External MCP clients (ChatGPT, Claude.ai, MCP Inspector) call /mcp
cross-origin with Bearer tokens. The OPTIONS preflight was hitting the
SPA catch-all because the global cors({ origin: false }) didn't add
Access-Control-Allow-Origin. Without a valid CORS response the browser
blocked the subsequent POST, preventing the 401 WWW-Authenticate header
from being read — ChatGPT reported 'does not implement OAuth'.

2026-05-05 13:57:52 +02:00

..

db

fix: add APP_VERSION fallback and HOST bind address env var (#952 #953) (#955)

2026-05-04 14:21:55 +02:00

demo

v2.6.2 — TREK Rebrand, OSM Enrichment, File Management, Hotel Bookings & Bug Fixes

2026-03-28 16:38:08 +01:00

mcp

fix: open CORS for OAuth register/authorize + correct WWW-Authenticate PRM path

2026-05-05 13:29:40 +02:00

middleware

Bug fixes - April 27th 2026 (#907)

2026-04-28 05:17:20 +02:00

routes

feat: migrate OAuth public endpoints to MCP SDK auth handlers

2026-05-05 13:01:32 +02:00

services

Bug fixes - May 2nd 2026 (#941)

2026-05-03 17:39:45 +02:00

systemNotices

Bug fixes - May 2nd 2026 (#941)

2026-05-03 17:39:45 +02:00

utils

Bug fixes - May 2nd 2026 (#941)

2026-05-03 17:39:45 +02:00

addons.ts

feat(notices): add system notice infrastructure

2026-04-16 14:36:33 +02:00

app.ts

fix: add /mcp to open-CORS pre-middleware

2026-05-05 13:57:52 +02:00

config.ts

Bug fixes - April 27th 2026 (#907)

2026-04-28 05:17:20 +02:00

index.ts

fix: add APP_VERSION fallback and HOST bind address env var (#952 #953) (#955)

2026-05-04 14:21:55 +02:00

scheduler.ts

Bug fixes - April 27th 2026 (#907)

2026-04-28 05:17:20 +02:00

types.ts

feat: journey gallery 1-to-N model with M:N entry-photo junction table

2026-04-22 15:58:31 +02:00

websocket.ts

Add comprehensive backend test suite (#339)

2026-04-03 13:17:53 +02:00