Merged
Conversation
…fixes #566) When the IdP returns an encrypted ID token (e.g. Authentik with Encryption Key set), Authlib raises UnsupportedAlgorithmError. Previously this was caught generically and users saw a misleading message about session/cookie/proxy. - Detect algorithm/JWE-related errors via exception type, module, or message - Log reason=unsupported_algorithm_or_jwe and a specific warning - Flash: disable ID token encryption (e.g. leave Authentik Encryption Key empty) - Keep existing message for real session/state/code failures
#566) - Add Authentik to provider notes: leave Encryption Key empty; JWE not supported - Add troubleshooting entry for 'SSO failed' with unsupported algorithm/encrypted token - Mention reason=unsupported_algorithm_or_jwe in callback redirect log examples
OAuth: Replace deprecated accounting.transactions scope with accounting.invoices and accounting.payments so new Xero Developer apps (on or after 2026-03-02) complete the authorization flow. Expense sync: Use /api.xro/2.0/ExpenseClaims instead of non-existent /api.xro/2.0/Expenses; read ExpenseClaimID from response. API: Add optional json_body to _api_request and send invoice/expense payloads (Invoices and ExpenseClaims wrappers) to Xero. Docs: Add docs/integrations/XERO.md (setup, scopes, sync, troubleshooting) and CHANGELOG entry.
- Add data-devaluation-supported on stock item options (trackable + default cost). - When return/waste is selected and item cannot be devalued, disable 'Apply devaluation', show message: 'Devaluation requires a trackable item with a default cost.' - Same message for standalone devaluation type when item is unsupported. - Add en translation string for the new message.
Defer manual entry worked-time recalculation to the next microtask so the DOM has the latest start/end date and time before reading. Add input listeners so recalculation runs on every date/time change. Fixes incorrect duration when end date is in the past (e.g. yesterday) until the user reselected the end date.
- In section 5.3 Stock Devaluation: note form message when item does not support devaluation. - Add 'How to use (UI)' steps for return and waste with devaluation. - Add API note for POST /api/v1/inventory/movements devaluation parameters. - Enables closing GitHub issue #385 with a doc reference.
- Add implementation note for deferred recalculation and input listeners - Reference fix from Break Time feature doc (manual entry / worked time)
❌ CI Test ResultsOverall Status: 2 test suite(s) failed Test Results: 0/7 passed Test Suites:
Commit: c10eda1 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Description
Brief description of the change and why it's needed.
Type of change
Checklist
pytest).Related issues
Fixes # (issue number, if applicable)
See CONTRIBUTING.md and CHANGELOG.md for guidelines.