Torsten Schulz (local)
|
5ce064cff0
|
Update Apache SSL configuration and enhance security features across multiple files. Changed X-Frame-Options to SAMEORIGIN for better security, added optional Content Security Policy headers for testing, and improved password handling with HaveIBeenPwned checks during user registration and password reset. Implemented passkey login functionality in the authentication flow, including UI updates for user experience. Enhanced image upload processing with size limits and validation, and added rate limiting for various API endpoints to prevent abuse.
|
2026-01-05 11:50:57 +01:00 |
|
Torsten Schulz (local)
|
d89cabdd34
|
Enhance security and error handling in various components by refining error catch blocks to ignore specific errors, improving code clarity and consistency across the application.
|
2025-12-20 15:05:49 +01:00 |
|
Torsten Schulz (local)
|
3e956ac46b
|
Update path handling comments across multiple files to enhance security against path traversal vulnerabilities, ensuring consistent use of nosemgrep annotations for better code analysis.
|
2025-12-20 14:49:57 +01:00 |
|
Torsten Schulz (local)
|
e73d328139
|
Enhance security by adding DOMPurify sanitization comments in newsletter and Vereins components, and update path handling comments in server utilities to address potential path traversal vulnerabilities.
|
2025-12-20 10:54:49 +01:00 |
|
Torsten Schulz (local)
|
8fcb71b946
|
Enhance content sanitization across various components by integrating 'dompurify' for improved security and update package dependencies in package.json and package-lock.json.
|
2025-12-20 10:49:20 +01:00 |
|
Torsten Schulz (local)
|
390b7daefc
|
Update dependencies to include TinyMCE and Quill, enhance Navigation component with a new Newsletter submenu, and implement role-based access control for CMS features. Refactor user role handling to support multiple roles and improve user management functionality across various API endpoints.
|
2025-12-19 09:51:28 +01:00 |
|
Torsten Schulz (local)
|
2dc0bc7d67
|
Add dotenv package for environment variable management and refactor SMTP credential handling in email services. Enhance error handling for missing SMTP credentials across various API endpoints to improve reliability and maintainability.
|
2025-12-18 12:19:23 +01:00 |
|
Torsten Schulz (local)
|
db4a608599
|
Refactor authentication and data handling in API; implement encryption for user and member data storage. Update relevant components to utilize new encryption methods, ensuring secure data management across the application. Enhance error handling and streamline data writing processes for improved reliability.
|
2025-11-05 13:49:47 +01:00 |
|
Torsten Schulz (local)
|
89f6edd016
|
Add missing getUserById and getUserByEmail exports to auth utils
|
2025-10-21 14:30:56 +02:00 |
|
Torsten Schulz (local)
|
a0e5edeb95
|
Add global auth state with composable for reactive login status
|
2025-10-21 14:12:01 +02:00 |
|
Torsten Schulz (local)
|
96b11e5bf5
|
Add registration page, fix auth paths, and improve navigation
|
2025-10-21 11:31:43 +02:00 |
|
Torsten Schulz (local)
|
f3c08cfb71
|
Add authentication system with login, password reset, and member area
|
2025-10-21 11:23:06 +02:00 |
|