Torsten Schulz (local)
ad21534862
Add CORS support for Cross-Device Authentication in passkey handling
...
Code Analysis (JS/Vue) / analyze (push) Failing after 45s
Enhance authentication options in the server API by adding CORS headers to support cross-device authentication. Implement handling for preflight OPTIONS requests and increase timeout for registration and authentication processes to 5 minutes, improving user experience and compatibility across devices.
2026-01-07 20:59:48 +01:00
Torsten Schulz (local)
3d9b6b57dc
Refactor authentication handling in Navigation and registration components to support lazy store access, improving resilience against Pinia initialization issues. Enhance registration logic to include optional password fallback for passkey users, with validation checks for password strength and confirmation. Update server-side registration to handle optional password securely, ensuring consistent user experience across different authentication methods.
Code Analysis (JS/Vue) / analyze (push) Failing after 49s
2026-01-07 20:16:17 +01:00
Torsten Schulz (local)
4c7ae87c70
Remove deprecated data files including configuration, gallery metadata, members, news, sessions, users, and membership applications to streamline the server data structure and improve maintainability.
Code Analysis (JS/Vue) / analyze (push) Has been cancelled
2026-01-07 20:16:03 +01:00
Torsten Schulz (local)
8bdebf6a73
Implement passkey support checks in registration page, including user feedback for unsupported scenarios. Update logic to determine passkey availability based on secure context and browser compatibility, enhancing user experience during registration.
Code Analysis (JS/Vue) / analyze (push) Failing after 50s
2026-01-07 18:46:45 +01:00
Torsten Schulz (local)
fde25d92c5
Implement passkey recovery feature, including email link requests and registration options. Update login and registration pages to support passkey authentication, with UI enhancements for user experience. Add server-side handling for passkey registration and login, including account activation checks. Update environment configuration for passkey recovery TTL settings.
Code Analysis (JS/Vue) / analyze (push) Failing after 48s
2026-01-07 18:37:01 +01:00
Torsten Schulz (local)
a8423f9c39
Enhance deployment script to conditionally symlink data directories based on git tracking status, improving error handling for uncommitted changes. Implement cleanup of untracked files while preserving essential directories, ensuring a smoother deployment process.
Code Analysis (JS/Vue) / analyze (push) Failing after 42s
2026-01-07 18:08:07 +01:00
Torsten Schulz (local)
946e5fadb0
Refactor deployment script to handle symlinking of public data conditionally based on git tracking status, improving error handling for uncommitted changes. Update PM2 configuration to directly start the Node server for Nuxt 4 production builds in both harheimertc.config.cjs and harheimertc.simple.cjs. Modify user ID handling in registration options to use Uint8Array for compatibility with @simplewebauthn/server.
Code Analysis (JS/Vue) / analyze (push) Failing after 43s
2026-01-07 18:06:09 +01:00
Torsten Schulz (local)
4864c80da3
Update package-lock.json to remove deprecated @peculiar/x509 version and add a new dependency entry for @simplewebauthn/server. Modify package.json to include an override for @peculiar/x509 version 1.13.0, ensuring compatibility across the project.
Code Analysis (JS/Vue) / analyze (push) Failing after 44s
2026-01-07 17:58:38 +01:00
Torsten Schulz (local)
9bae707473
Refactor deployment script to improve data management by introducing configurable backup and restore paths, enhancing error handling, and ensuring persistent data storage. Update backup processes to create timestamped directories for better organization.
Code Analysis (JS/Vue) / analyze (push) Failing after 49s
2026-01-07 17:54:49 +01:00
Torsten Schulz (local)
225e930e4c
Update deployment script to ensure persistent data management, enhance backup and restore processes, and improve error handling. Modify .gitignore to exclude sensitive production data and update deployment documentation to reflect changes. Add environment variable loading for production secrets in configuration files.
Code Analysis (JS/Vue) / analyze (push) Failing after 48s
2026-01-07 17:42:04 +01:00
Torsten Schulz (local)
371fef25d7
Refactor authentication middleware to remove dependency on Pinia, implementing direct API calls for authentication status checks. Update member API documentation to escape JWT token placeholder for clarity. Update session and user data formats for improved security and consistency.
Code Analysis (JS/Vue) / analyze (push) Failing after 53s
2026-01-07 17:26:22 +01:00
Torsten Schulz (local)
673c34ac9d
Update Apache SSL configuration and enhance security features across multiple files. Changed X-Frame-Options to SAMEORIGIN for better security, added optional Content Security Policy headers for testing, and improved password handling with HaveIBeenPwned checks during user registration and password reset. Implemented passkey login functionality in the authentication flow, including UI updates for user experience. Enhanced image upload processing with size limits and validation, and added rate limiting for various API endpoints to prevent abuse.
Code Analysis (JS/Vue) / analyze (push) Failing after 51s
2026-01-05 11:50:57 +01:00
Torsten Schulz (local)
8bd7ed76cd
Remove gitleaks binary and archive files, and update .gitignore to exclude security tooling artifacts, enhancing project cleanliness and security management.
Code Analysis (JS/Vue) / analyze (push) Successful in 3m49s
2025-12-20 16:01:40 +01:00
Torsten Schulz (local)
0afdfec33b
Enhance code analysis workflow by adding workspace sanity checks and refining OSV-Scanner commands to ensure proper execution with package-lock.json, improving overall reliability of the analysis process.
Code Analysis (JS/Vue) / analyze (push) Has been cancelled
2025-12-20 16:01:25 +01:00
Torsten Schulz (local)
ca204e6ef9
Add gitleaks binary and archive; remove README.md
Code Analysis (JS/Vue) / analyze (push) Successful in 3m51s
2025-12-20 15:49:21 +01:00
Torsten Schulz (local)
e55ca48de8
Reorganize code analysis workflow to run gitleaks scan before installing dependencies, ensuring more accurate results and maintaining a cleaner environment for subsequent analysis steps.
Code Analysis (JS/Vue) / analyze (push) Failing after 8s
2025-12-20 15:45:02 +01:00
Torsten Schulz (local)
60257edde3
Update code analysis workflow to remove node_modules along with build artifacts before gitleaks scanning, improving security and ensuring a cleaner environment for analysis.
Code Analysis (JS/Vue) / analyze (push) Failing after 3m50s
2025-12-20 15:35:03 +01:00
Torsten Schulz (local)
111c8c239c
Refactor code analysis workflow by adding gitleaks detection command and removing obsolete output files to streamline the build process and enhance security checks.
Code Analysis (JS/Vue) / analyze (push) Failing after 3m34s
2025-12-20 15:29:58 +01:00
Torsten Schulz (local)
9e5ccbe8a3
Refine gitleaks download and extraction process in code analysis workflow by implementing dynamic asset URL retrieval, enhanced error handling for invalid downloads, and improved extraction methods.
Code Analysis (JS/Vue) / analyze (push) Failing after 3m16s
2025-12-20 15:22:30 +01:00
Torsten Schulz (local)
dd21174f1d
Improve gitleaks download process in code analysis workflow by adding error handling for invalid downloads and ensuring proper extraction of the archive.
Code Analysis (JS/Vue) / analyze (push) Failing after 3m37s
2025-12-20 15:12:27 +01:00
Torsten Schulz (local)
6fda6ebad0
Enhance security and error handling in various components by refining error catch blocks to ignore specific errors, improving code clarity and consistency across the application.
Code Analysis (JS/Vue) / analyze (push) Failing after 4m10s
2025-12-20 15:05:49 +01:00
Torsten Schulz (local)
c9037fec45
Update path handling comments across multiple files to enhance security against path traversal vulnerabilities, ensuring consistent use of nosemgrep annotations for better code analysis.
Code Analysis (JS/Vue) / analyze (push) Successful in 3m19s
2025-12-20 14:49:57 +01:00
Torsten Schulz (local)
e128e1a77c
Enhance security by adding role-checking functions in ESLint configuration and updating Vue components to improve content sanitization comments, while refining error handling in API endpoints for better clarity.
Code Analysis (JS/Vue) / analyze (push) Failing after 3m40s
2025-12-20 14:19:55 +01:00
Torsten Schulz (local)
19024cd87e
Enhance security by adding DOMPurify comments in Vue components and updating path handling comments in server utilities to mitigate path traversal risks.
Code Analysis (JS/Vue) / analyze (push) Failing after 46s
2025-12-20 11:15:31 +01:00
Torsten Schulz (local)
968c749fe3
Enhance security by adding DOMPurify sanitization comments in newsletter and Vereins components, and update path handling comments in server utilities to address potential path traversal vulnerabilities.
Code Analysis (JS/Vue) / analyze (push) Failing after 3m28s
2025-12-20 10:54:49 +01:00
Torsten Schulz (local)
316cce1b26
Enhance content sanitization across various components by integrating 'dompurify' for improved security and update package dependencies in package.json and package-lock.json.
Code Analysis (JS/Vue) / analyze (push) Failing after 4m56s
2025-12-20 10:49:20 +01:00
Torsten Schulz (local)
acfa842131
Add SMTP credentials for tests and enhance user role handling in CMS and Galerie endpoints
Code Analysis (JS/Vue) / analyze (push) Failing after 3m43s
2025-12-20 10:32:06 +01:00
Torsten Schulz (local)
4f453f77bc
Update package dependencies to vitest v4.0.16 and enhance role management in auth utilities with new role-checking functions in tests
Code Analysis (JS/Vue) / analyze (push) Failing after 57s
2025-12-20 10:25:16 +01:00
Torsten Schulz (local)
42b9a10437
Refactor error handling in various components to ignore modal display failures and improve code clarity
Code Analysis (JS/Vue) / analyze (push) Failing after 51s
2025-12-20 10:19:29 +01:00
Torsten Schulz (local)
b20b89d333
Update package-lock.json and package.json to include 'globals' dependency and improve code formatting in various components for better readability.
Code Analysis (JS/Vue) / analyze (push) Failing after 54s
2025-12-20 10:17:16 +01:00
Torsten Schulz (local)
861802b716
Update package dependencies to include eslint-plugin-vue and vue-eslint-parser for enhanced linting support
Code Analysis (JS/Vue) / analyze (push) Failing after 33s
2025-12-19 17:32:56 +01:00
Torsten Schulz (local)
164c5d9297
Update code analysis workflow to run on ubuntu-latest for improved compatibility
Code Analysis (JS/Vue) / analyze (push) Failing after 52s
2025-12-19 17:28:47 +01:00
Torsten Schulz (local)
a323684f13
Update code analysis workflow to improve clarity and efficiency by renaming steps and simplifying Semgrep command execution.
Code Analysis (JS/Vue) / analyze (push) Has been cancelled
2025-12-19 16:53:09 +01:00
Torsten Schulz (local)
131edc0cb1
Add linting script to package.json for improved code quality
Code Analysis (JS/Vue) / analyze (push) Has been cancelled
2025-12-19 16:38:29 +01:00
6243db3020
Merge pull request 'Update dependency @babel/parser to v7.28.5' ( #2 ) from renovate/babel-monorepo into main
...
Reviewed-on: #2
2025-12-19 16:13:11 +01:00
97742b24bb
Merge pull request 'Update dependency @pinia/nuxt to v0.11.3' ( #3 ) from renovate/pinia-nuxt-0.x-lockfile into main
...
Reviewed-on: #3
2025-12-19 16:12:58 +01:00
40c2139aa8
Update dependency @pinia/nuxt to v0.11.3
2025-12-19 16:11:56 +01:00
e05eb46bc5
Update dependency @babel/parser to v7.28.5
2025-12-19 16:11:48 +01:00
edb8d1c521
Merge pull request 'Configure Renovate' ( #1 ) from renovate/configure into main
...
Reviewed-on: #1
2025-12-19 16:09:18 +01:00
c50aa1b5c1
Add renovate.json
2025-12-19 15:58:03 +01:00
Torsten Schulz (local)
7e8d693832
Refactor training time input fields in Einstellungen component to improve layout and usability. Add optional information field for training times and ensure proper handling of group data. Update rendering logic in Training component to display additional information if provided.
2025-12-19 10:23:58 +01:00
Torsten Schulz (local)
6b24ac0071
Implement toggle functionality for Mannschaftsspieler status in Mitgliederbereich. Add button for editing status and update local state upon toggling. Enhance API response handling to include isMannschaftsspieler attribute for user data retrieval.
2025-12-19 10:14:41 +01:00
Torsten Schulz (local)
5a85c3d31a
Remove debug console logs from MannschaftenUebersicht, TermineVorschau, spielplaene, and filterData components to clean up code and improve performance.
2025-12-19 10:06:01 +01:00
Torsten Schulz (local)
cbe02a6caf
Enhance newsletter management by adding role-based access control for group creation. Introduce computed property to determine if the user can create groups based on their roles, improving functionality and user experience.
2025-12-19 10:03:21 +01:00
Torsten Schulz (local)
b33773e214
Update DATENSCHUTZ_UEBERSICHT.md to enhance data protection overview with a comprehensive table of contents, detailed descriptions of encrypted and non-encrypted data, and security policies. Include sections on encryption technology, authentication, authorization, API access control, roles and permissions, session management, environment variables, file system structure, external dependencies, and security guidelines.
2025-12-19 09:57:56 +01:00
Torsten Schulz (local)
435e28fd55
Update dependencies to include TinyMCE and Quill, enhance Navigation component with a new Newsletter submenu, and implement role-based access control for CMS features. Refactor user role handling to support multiple roles and improve user management functionality across various API endpoints.
2025-12-19 09:51:28 +01:00
Torsten Schulz (local)
baf6c59c0d
Enhance Vereinsmeisterschaften and Vorstand pages with image support for players and board members. Implement lightbox functionality for player images in Vereinsmeisterschaften. Update CSV handling to include image filenames for better data management. Refactor components to utilize PersonCard for board members, improving code readability and maintainability.
2025-12-18 13:37:03 +01:00
Torsten Schulz (local)
a004ffba9b
Implement checks for existing encryption with the new key in re-encryption scripts. Add functionality to skip re-encryption if data is already encrypted, enhancing efficiency and preventing redundant operations.
2025-12-18 13:12:02 +01:00
Torsten Schulz (local)
10499e0249
Enhance set-admin-password script to handle decryption errors by prompting for recreation of users.json file. Implement backup creation before overwriting and update README with usage instructions for the new functionality.
2025-12-18 12:45:53 +01:00
Torsten Schulz (local)
4b017453b2
Update AUTH_README.md to clarify admin password setup process and provide usage instructions for the set-admin-password script. Change file permissions for deploy.sh, production-setup.sh, and fetch-template.sh to make them executable.
2025-12-18 12:39:22 +01:00
