Skip to content

[comp] Production Deploy#2282

Merged
Marfuen merged 6 commits intoreleasefrom
main
Mar 11, 2026
Merged

[comp] Production Deploy#2282
Marfuen merged 6 commits intoreleasefrom
main

Conversation

@github-actions
Copy link
Contributor

@github-actions github-actions bot commented Mar 11, 2026

This is an automated pull request to release the candidate branch into production, which will trigger a deployment.
It was created by the [Production PR] action.

@github-actions @Marfuen
feat(device-agent): implement device registration and authentication …
542dcb3 
…flow (#2281)

- Added DeviceAgentAuthService to handle device authentication, including generating and exchanging authorization codes.
- Implemented device registration logic with and without serial numbers, ensuring proper organization validation.
- Created new DTOs for device registration, check-in, and authorization code exchange.
- Updated DeviceAgentController to include endpoints for generating auth codes, registering devices, and checking in.
- Introduced proxy functionality in the portal to forward device-agent requests to the NestJS API, enhancing security and session management.
- Enhanced error handling and validation across new features, ensuring robust API interactions.

Tests included for all new functionalities to ensure reliability and maintainability.

Co-authored-by: Mariano Fuentes <marfuen98@gmail.com>
@vercel
Copy link

vercel bot commented Mar 11, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

2 Skipped Deployments
Project Deployment Actions Updated (UTC)
app (staging) Skipped Skipped Mar 11, 2026 8:00pm
portal (staging) Skipped Skipped Mar 11, 2026 8:00pm

Request Review

@github-actions @Marfuen
fix(workflow): streamline CodeSignTool extraction process in device-a…
5c35bf1 
…gent-release.yml (#2283)

- Simplified the extraction logic for CodeSignTool by directly searching for the jar file within the extracted directory, eliminating the need for an intermediate directory variable.
- Enhanced error handling to ensure the jar file is found after extraction, improving the reliability of the workflow.

Co-authored-by: Mariano Fuentes <marfuen98@gmail.com>
@Marfuen
Mariano/device agent 3 (#2284)
a32e00c 
* fix(workflow): streamline CodeSignTool extraction process in device-agent-release.yml

- Simplified the extraction logic for CodeSignTool by directly searching for the jar file within the extracted directory, eliminating the need for an intermediate directory variable.
- Enhanced error handling to ensure the jar file is found after extraction, improving the reliability of the workflow.

* chore(workflow): add workflow_dispatch trigger to device-agent-release.yml

- Introduced a workflow_dispatch event to allow manual triggering of the device-agent-release workflow, enhancing flexibility in deployment processes.
@github-actions @Marfuen
[dev] [Marfuen] mariano/device-agent-4 (#2285)
2c2b0a2 
* fix(workflow): streamline CodeSignTool extraction process in device-agent-release.yml

- Simplified the extraction logic for CodeSignTool by directly searching for the jar file within the extracted directory, eliminating the need for an intermediate directory variable.
- Enhanced error handling to ensure the jar file is found after extraction, improving the reliability of the workflow.

* chore(workflow): add workflow_dispatch trigger to device-agent-release.yml

- Introduced a workflow_dispatch event to allow manual triggering of the device-agent-release workflow, enhancing flexibility in deployment processes.

* fix(workflow): correct error message formatting in device-agent-release.yml

- Updated the error message for signature verification failure to use a single hyphen instead of a double hyphen, improving consistency in output formatting.

---------

Co-authored-by: Mariano Fuentes <marfuen98@gmail.com>
@Marfuen
Mariano/device agent 5 (#2286)
5215b77 
* fix(workflow): streamline CodeSignTool extraction process in device-agent-release.yml

- Simplified the extraction logic for CodeSignTool by directly searching for the jar file within the extracted directory, eliminating the need for an intermediate directory variable.
- Enhanced error handling to ensure the jar file is found after extraction, improving the reliability of the workflow.

* chore(workflow): add workflow_dispatch trigger to device-agent-release.yml

- Introduced a workflow_dispatch event to allow manual triggering of the device-agent-release workflow, enhancing flexibility in deployment processes.

* fix(workflow): correct error message formatting in device-agent-release.yml

- Updated the error message for signature verification failure to use a single hyphen instead of a double hyphen, improving consistency in output formatting.

* fix(workflow): update CodeSignTool directory extraction in device-agent-release.yml

- Modified the directory extraction logic for CodeSignTool to reference the parent directory, improving the accuracy of the path used in the workflow.

---------

Signed-off-by: Mariano Fuentes <marfuen98@gmail.com>
@cursor
Copy link

cursor bot commented Mar 11, 2026
edited
Loading

PR Summary

Medium Risk
Adds new public and session-auth device-agent endpoints in the NestJS API (including auth-code exchange and S3 update file serving) and reroutes both the portal and the Electron agent to use them, which could impact authentication and auto-update flows if misconfigured. Includes KV/session-token handling and S3 object access changes that warrant careful staging validation.

Overview
Migrates device-agent backend functionality from portal Next.js routes into the NestJS API under v1/device-agent, adding endpoints for auth-code generation, exchange-code, org discovery, device registration, compliance check-in, device status, and public auto-update file serving (GET/HEAD updates/:filename).

Updates the portal to proxy legacy device-agent routes to the API (proxyToApi) while the device-auth callback page now calls the API cross-origin with cookies, and updates the Electron agent to use a new configurable API_URL (build-time + stored) and new /v1/... route paths.

Release pipeline is adjusted to pass API_URL into device-agent builds (prod vs staging), enable manual workflow dispatch, and simplify Windows signing jar discovery; better-auth is updated to include the bearer() plugin to support bearer-session tokens for the agent.

Written by Cursor Bugbot for commit cc85922. This will update automatically on new commits. Configure here.

cursor[bot]
cursor bot reviewed Mar 11, 2026
View reviewed changes
Copy link

@cursor cursor bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Cursor Bugbot has reviewed your changes and found 1 potential issue.

Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, enable autofix in the Cursor dashboard.

@vercel vercel bot temporarily deployed to staging – portal March 11, 2026 20:00 Inactive
@vercel vercel bot temporarily deployed to staging – app March 11, 2026 20:00 Inactive
@Marfuen Marfuen merged commit a52ee01 into release Mar 11, 2026
12 checks passed
@claudfuen
Copy link
Contributor

claudfuen commented Mar 11, 2026

🎉 This PR is included in version 3.2.0 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cursor cursor[bot] cursor[bot] left review comments

@Marfuen Marfuen Marfuen approved these changes

Assignees

No one assigned

Labels

automated-pr prod-deploy released

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@claudfuen @Marfuen