torsten/harheimertc
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
269 Commits 2 Branches 0 Tags
d52f3ffc8dba7c4e9ca84e3a2eef6feb09a99cec
Commit Graph

3 Commits

Author SHA1 Message Date
Torsten Schulz (local)
54aee3c787 Update security headers in Apache configuration to enhance protection 
This commit removes the X-Frame-Options header in favor of using Content Security Policy (CSP) with frame-ancestors for better flexibility and modern security practices. It also adds a fallback for frame-ancestors in case CSP is not enabled. Additionally, the JavaScript middleware is updated to reflect these changes, ensuring consistent security header management across the application.
 2026-01-11 20:59:42 +01:00
Torsten Schulz (local)
5ce064cff0 Update Apache SSL configuration and enhance security features across multiple files. Changed X-Frame-Options to SAMEORIGIN for better security, added optional Content Security Policy headers for testing, and improved password handling with HaveIBeenPwned checks during user registration and password reset. Implemented passkey login functionality in the authentication flow, including UI updates for user experience. Enhanced image upload processing with size limits and validation, and added rate limiting for various API endpoints to prevent abuse. 2026-01-05 11:50:57 +01:00
Torsten Schulz (local)
2c2128f30e Add start script to package.json 2025-10-21 01:07:48 +02:00