hobbyhimmel/Project-Image-Uploader
8
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
712b8477b9
Project-Image-Uploader/backend
History
matthias.lotz 712b8477b9 feat: Implement public/internal host separation 
Backend:
- Add hostGate middleware for host-based API protection
- Extend rate limiter with publicUploadLimiter (20/hour)
- Add source_host and source_type to audit logs
- Database migration for audit log source tracking
- Unit tests for hostGate middleware (10/20 passing)

Frontend:
- Add hostDetection utility for runtime host detection
- Implement React code splitting with lazy loading
- Update App.js with ProtectedRoute component
- Customize 404 page for public vs internal hosts
- Update env-config.js for host configuration

Docker:
- Add environment variables to prod/dev docker-compose
- Configure ENABLE_HOST_RESTRICTION flags
- Set PUBLIC_HOST and INTERNAL_HOST variables

Infrastructure:
- Prepared for nginx-proxy-manager setup
- Trust proxy configuration (TRUST_PROXY_HOPS=1)

Note: Some unit tests still need adjustment for ENV handling
2025-11-25 20:26:59 +01:00
..
docs fix: enforce session cookie behavior in prod 2025-11-24 20:00:52 +01:00
src feat: Implement public/internal host separation 2025-11-25 20:26:59 +01:00
tests feat: Implement public/internal host separation 2025-11-25 20:26:59 +01:00
.dockerignore feat: Complete image description feature implementation 2025-11-07 23:20:50 +01:00
.gitignore Initial Commit 2025-10-15 21:33:00 +02:00
jest.config.js Feature Request: admin session security 2025-11-23 21:18:42 +01:00
package.json Feature Request: admin session security 2025-11-23 21:18:42 +01:00