wip auth slimmed down

[gudnuf]

This is a slimmed down version of #497 to implement the bare minimum of auth as defined by NUT-21 and 22

For now this implementation automatically redirects the user to the mint's login page whenever a CAT is needed. We need to figure out a way to pop up a modal to ask the user before redirecting.

Then after the user is authenticated we should redirect them to whatever action they were doing. For example, when adding a mint the user will enter the mint details, click "add", authenticate, and then they should be redirected to the add mint form prefilled with what they already added.

Also for minting we need to check whether auth is required for any of the mint endpoints before allowing the user to create a mint quote because creating a mint quote may not require auth, but actually minting the ecash could. We do not want the user to get a mint quote unless we know they will be able to complete the minting flow.

Testing

To test you will need a mint that has auth enabled. This PR is into #591, so all you need to do to run the mint is devenv processes up. This will start a mint on localhost:8085. You will also need to configure a keycloak user and access settings. See the README here

Once you have keycloak configured with the correct redirect-url and a user, then you can add the mint

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Preview	Comments	Updated (UTC)
agicash	Ready	Preview	Comment	Aug 26, 2025 7:19pm

1 Skipped Deployment

Project	Deployment	Preview	Comments	Updated (UTC)
boardwalk	Ignored			Aug 26, 2025 7:19pm

[supabase]

This pull request has been ignored for the connected project hrebgkfhjpkbxpztqqke because there are no changes detected in supabase directory. You can change this behaviour in Project Integrations Settings ↗︎.

---

Preview Branches by Supabase.
Learn more about Supabase Branching ↗︎.