Hamza/intaleq_v2
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

1Scurity:6 \Fix HMAC handshake, generate API keys in Google Login, and relax JWT issuer

Browse Source
This commit is contained in:
Hamza-Ayed
2026-04-24 20:03:03 +03:00
parent bcc6639a3a
commit 8ac07c4b3f
2 changed files with 56 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
routes/api.php
View File

@@ -68,8 +68,8 @@ Route::prefix('v2/auth')->group(function () {
// Admin Error Logging (public — accepts error reports from Flutter apps)
Route::post('v2/admin/errors', [MiscController::class, 'logClientError']);
// Notification Tokens (Common for both)
Route::match(['get', 'post'], 'v2/notifications/token', [NotificationController::class, 'updateToken']);
Route::post('v2/notifications/token', [NotificationController::class, 'updateToken']);
Route::get('v2/notifications/token', [NotificationController::class, 'getToken']);
// OTP (public, but rate-limited)
Route::prefix('v2/otp')->middleware('throttle:10,1')->group(function () {