b56f8253d9
Harden backend against critical and high security vulnerabilities
...
Deploy with Docker Compose / deploy (push) Successful in 3m51s
- Fix WebSocket CheckOrigin to use proper url.Parse instead of string stripping
- Add admin auth checks to Users/User GraphQL queries
- Remove GraphQL GET transport to prevent CSRF via cross-site links
- Add application-level IP-based login rate limiting (5 attempts/min)
- Add path traversal bounds check on radio file upload
- Require DEV_MODE for GraphQL introspection and playground
- Move notes backend endpoint behind admin middleware
- Add dedicated Nginx rate limit zone for GraphQL (10r/s)
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com >
2026-04-14 13:27:33 +01:00
29350af2e0
Fix WebSocket 403 in dev mode by allowing localhost origins
...
Deploy with Docker Compose / deploy (push) Has been cancelled
The CheckOrigin function only accepted the production domain, rejecting
localhost connections in dev. Also removed redundant error response after
a failed upgrade since the upgrader already writes its own HTTP response.
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com >
2026-03-25 16:59:13 +00:00
8e50537333
Get AI to fix vunerabilities in site
Deploy with Docker Compose / deploy (push) Has been cancelled
2026-03-09 14:12:29 +00:00
a83b98eb2b
Make chat persistent across reboot
Deploy with Docker Compose / deploy (push) Successful in 3m25s
2026-03-05 21:43:04 +00:00
9dc9a3a063
Pose max message limit on chat function so no crash ^_^
Deploy with Docker Compose / deploy (push) Successful in 3m30s
2026-03-05 20:07:08 +00:00
95635c86b3
Fix up live chat
Deploy with Docker Compose / deploy (push) Successful in 4m26s
2026-03-05 19:14:05 +00:00
6469cb4ad7
new gif
2026-01-27 11:00:43 +00:00
eaba9c8069
websocket?
2026-01-22 10:47:02 +00:00
02d70ee5db
init commit websocket
2026-01-22 10:23:33 +00:00
