Hamza/intaleq_v2
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Security Hardening: Implement RateLimiter for OTP, add strict validation for Admin device_number, and reduce HMAC tolerance to 60s

Browse Source
This commit is contained in:
Hamza-Ayed
2026-04-24 22:07:34 +03:00
parent 2b9176e229
commit cc85fe1815
2 changed files with 6 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
config/intaleq.php
View File

@@ -18,7 +18,7 @@ return [
? trim(file_get_contents('/home/intaleq-api/.secret_key'))
: env('JWT_SECRET'),
'hmac_tolerance' => env('HMAC_TOLERANCE_SECONDS', 300),
'hmac_tolerance' => env('HMAC_TOLERANCE_SECONDS', 60),
// Encryption - قراءة مفتاح التشفير من الملف
'legacy_enc_key_path' => '/home/intaleq-api/.enckey',