From 8bf8d4b576cefea6b974a7e724ed08b8d3ef5f94 Mon Sep 17 00:00:00 2001
From: Vadym Samoilenko <vadymsamoilenko@oliver.agency>
Date: Thu, 7 May 2026 10:42:35 +0100
Subject: [PATCH] vault backup: 2026-05-07 10:42:35

---
 01 Projects/cc-dashboard/CC Dashboard.md | 5 +++++
 99 Daily/2026-05-07.md                   | 3 +++
 2 files changed, 8 insertions(+)

diff --git a/01 Projects/cc-dashboard/CC Dashboard.md b/01 Projects/cc-dashboard/CC Dashboard.md
index f30ec6e..0c4124f 100644
--- a/01 Projects/cc-dashboard/CC Dashboard.md	
+++ b/01 Projects/cc-dashboard/CC Dashboard.md	
@@ -177,6 +177,10 @@ All endpoints except `/auth/login` require valid JWT in `Authorization: Bearer {
 - **Recent fixes:** Accurate time tracking with interval union (no double-counting), project metadata fields, auto-detect repo URL from git remote, chart null-safety, async safety (selectinload, execute delete)
 
 ## Sessions
+### 2026-05-07 – Configure SSO with user isolation, disable
+**Asked:** Configure SSO with user isolation, disable personal login, and migrate user vadymsamoilenko@oliver.agecny to VadymSamoilenko@oliver.agecny.
+**Done:** Added https://optical-dev.oliver.solutions/cc-dashboard/ as SPA to AI portal app and located SSO configuration data in Obsidian notes.
+
 ### 2026-05-07 – Set up SSO, isolate users, disable
 **Asked:** Set up SSO, isolate users, disable personal login, and link vadymsamoilenko@oliver.agecny to VadymSamoilenko@oliver.agecny.
 **Done:** Configured SSO with user isolation, added optical-dev.oliver.solutions/cc-dashboard/ as SPA, disabled personal login, and migrated user account to SSO identity.
@@ -276,6 +280,7 @@ All endpoints except `/auth/login` require valid JWT in `Authorization: Bearer {
 ## Change Log
 | Date | Requested | Changed | Files |
 |------|-----------|---------|-------|
+| 2026-05-07 | SSO configuration | Oliver tenant ID, ac-tool client_id, redirect URI, platform type set to SPA | Obsidian notes, AI portal app registration |
 | 2026-05-07 | SSO configuration | User isolation, personal login disabled, user account migration, SPA added | src/sso.py, src/routers/auth.py, src/auth.py, src/models.py |
 | 2026-05-07 | SSO setup with user isolation | sso.py, auth.py, models.py, routers/auth.py — JWKS validation, removed /login endpoint, added azure_oid field, user migration | src/sso.py, src/auth.py, src/models.py, src/routers/auth.py |
 | 2026-05-06 | Projects toFixed error | Add null checks and fallback values, verify rendering | ProjectsView.js, CardContent.vue |
diff --git a/99 Daily/2026-05-07.md b/99 Daily/2026-05-07.md
index bedc887..85085c3 100644
--- a/99 Daily/2026-05-07.md	
+++ b/99 Daily/2026-05-07.md	
@@ -11,3 +11,6 @@ tags: [daily]
 - 10:40 | `cc-dashboard`
   - **Asked:** Set up SSO, isolate users, disable personal login, and link vadymsamoilenko@oliver.agecny to VadymSamoilenko@oliver.agecny.
   - **Done:** Configured SSO with user isolation, added optical-dev.oliver.solutions/cc-dashboard/ as SPA, disabled personal login, and migrated user account to SSO identity.
+- 10:41 | `cc-dashboard`
+  - **Asked:** Configure SSO with user isolation, disable personal login, and migrate user vadymsamoilenko@oliver.agecny to VadymSamoilenko@oliver.agecny.
+  - **Done:** Added https://optical-dev.oliver.solutions/cc-dashboard/ as SPA to AI portal app and located SSO configuration data in Obsidian notes.