v0.2.0 Add JWT

🔒 Security Fixes

• Fixed security issue: Replaced insecure cookie-based session storage with JWT tokens
• Session data is now stored as signed JWT tokens using the jose library with HS512 algorithm
• Improved session validation and security

⚠️ Breaking Changes

• JWT_SECRET environment variable required: When OIDC authentication is enabled, you must now configure the JWT_SECRET environment variable
• The JWT_SECRET is used to sign and verify JWT tokens for user sessions
• OIDC authentication will not work without JWT_SECRET configured
• See README for instructions on generating a secure JWT secret

📝 Documentation

• Added JWT_SECRET to environment variables documentation
• Added instructions for generating JWT secrets using OpenSSL, Node.js/Bun, and Python
• Updated troubleshooting section with JWT-related information

🔧 Technical Changes

• Added jose library at version 6.1.2
• Replaced JSON cookie storage with JWT token-based authentication
• Updated getAuthSession() to validate JWT tokens
• Added createJWT() function for token generation

Full Changelog: v0.1.1...v0.2.0

v0.1.1

🐛 Bug Fixes

• Fixed latest tag
• Fixed display name rendering in login button

📝 Documentation

• Updated readme

Full Changelog: v0.1.0...v0.1.1

v0.1.0 — Initial Release

This is the first release of Cutly - a URL shortener service. This version introduces the core functionality of the application.

✨ Core Features

• URL Shortening: Create short links from long URLs with configurable length (2 to 10 characters)
• Redirects: Automatic redirection from short links to original URLs
• Click Tracking: Record information about each click, including IP address and User-Agent
• Optional Authentication: Support for OIDC authentication (Google, Auth0, Keycloak, and other OIDC-compliant providers)
• Modern UI: User interface built with Mantine UI with copy-to-clipboard functionality for short links
• Link Length Configuration: Interactive slider to choose short link length with display of possible combinations

🛠 Technical Features

• Stack: TanStack Start, React, Prisma, SQLite
• Runtime: Bun
• Database: SQLite with automatic migrations
• Docker: Ready-to-use configuration for deployment via Docker Compose
• URL Validation: Automatic normalization and validation of URLs before creating short links
• Deduplication: Automatic return of existing short link for already shortened URLs

📦 Deployment

• Local development support via Bun
• Docker image for containerization
• Docker Compose configuration for quick deployment
• Configuration through environment variables

⚠️ Important Notice

This release is not yet ready for production use. This is an early version intended for testing and development. Before using in production, it is recommended to:

• Conduct full functionality testing
• Set up database backups
• Configure monitoring and logging
• Perform security audit
• Optimize performance for high loads

📝 Known Limitations

• SQLite database may become a bottleneck under high load
• No admin panel for link management
• No statistics and analytics for links
• No API for programmatic access
• No user management and access control