discours.io/quoter
5
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
323 Commits 1 Branch 0 Tags
82668768d01b17d45d977e350ca570df0347f207
Commit Graph

7 Commits

Author SHA1 Message Date
Untone
82668768d0 🔒 Implement comprehensive security and DDoS protection 
### Security Features:
- **Rate Limiting**: Redis-based IP tracking with configurable limits
  - General: 100 requests/minute (5min block)
  - Upload: 10 requests/5min (10min block)
  - Auth: 20 requests/15min (30min block)
- **Request Validation**: Path length, header count, suspicious patterns
- **Attack Detection**: Admin paths, script injections, bot patterns
- **Enhanced JWT**: Format validation, length checks, character filtering
- **IP Tracking**: X-Forwarded-For and X-Real-IP support

### Security Headers:
- X-Content-Type-Options: nosniff
- X-Frame-Options: DENY
- X-XSS-Protection: 1; mode=block
- Content-Security-Policy with strict rules
- Strict-Transport-Security with includeSubDomains

### CORS Hardening:
- Limited to specific domains: discours.io, new.discours.io
- Restricted methods: GET, POST, OPTIONS only
- Essential headers only

### Infrastructure:
- Security middleware for all requests
- Local cache + Redis for performance
- Comprehensive logging and monitoring
- Progressive blocking for repeat offenders

### Documentation:
- Complete security guide (docs/security.md)
- Configuration examples
- Incident response procedures
- Monitoring recommendations

Version bump to 0.6.0 for major security enhancement.
 2025-09-02 11:40:43 +03:00
Untone
d3bee5144f 🧹 Remove unused legacy modules and functions 
- Deleted quota.rs module (quota management not needed via HTTP)
- Removed legacy get_id_by_token GraphQL function
- Removed unused set_user_quota and increase_user_quota methods
- Cleaned up unused imports and legacy structs
- Simplified handlers/mod.rs to only expose universal_handler

Architecture now focused on core functionality:
- GET / (user info)
- GET /<filename> (file serving)
- POST / (file upload)
 2025-09-02 11:27:48 +03:00
Untone
112f102bb5 fmt
Some checks failed
Deploy / deploy (push) Has been skipped
Details
CI / lint (push) Failing after 7m37s
Details
CI / test (push) Has been cancelled
Details
2025-09-01 22:58:03 +03:00
Untone
6c3262edbe simpler-auth+no-overlay
Some checks failed
Deploy / deploy (push) Has been skipped
Details
CI / lint (push) Failing after 8s
Details
CI / test (push) Failing after 3m57s
Details
2025-09-01 20:36:15 +03:00
Untone
ea92a376ed docs
Some checks failed
CI / test (push) Failing after 4m0s
Details
CI / lint (push) Failing after 4s
Details
CI / deploy (push) Has been skipped
Details
2025-08-02 00:18:09 +03:00
Untone
30000a4803 0.1.1-cors-internal
Some checks failed
deploy / deploy (push) Failing after 33s
Details
2025-06-02 22:20:37 +03:00
Untone
9fcce86075 handlers-refactored
Some checks failed
deploy / deploy (push) Failing after 4m4s
Details
2024-10-22 00:36:42 +03:00