Hamza-Ayed
|
691305340a
|
Update: 2026-05-04 18:05:37
|
2026-05-04 18:05:37 +03:00 |
|
Hamza-Ayed
|
2d25bee2a6
|
Update: 2026-05-04 18:00:43
|
2026-05-04 18:00:43 +03:00 |
|
Hamza-Ayed
|
51ae81a9fa
|
Update: 2026-05-04 17:59:11
|
2026-05-04 17:59:11 +03:00 |
|
Hamza-Ayed
|
98c4b922be
|
Update: 2026-05-04 17:29:56
|
2026-05-04 17:29:56 +03:00 |
|
Hamza-Ayed
|
47652b4d95
|
Update: 2026-05-04 16:06:15
|
2026-05-04 16:06:15 +03:00 |
|
Hamza-Ayed
|
863dabc069
|
Update: 2026-05-04 14:40:41
|
2026-05-04 14:40:41 +03:00 |
|
Hamza-Ayed
|
ebb70e657e
|
Update: 2026-05-04 02:53:16
|
2026-05-04 02:53:16 +03:00 |
|
Hamza-Ayed
|
02309488ad
|
Update: 2026-05-04 02:29:13
|
2026-05-04 02:29:13 +03:00 |
|
Hamza-Ayed
|
e704ba127c
|
Update: 2026-05-04 02:24:10
|
2026-05-04 02:24:10 +03:00 |
|
Hamza-Ayed
|
3e9d380e6d
|
Update: 2026-05-04 02:20:59
|
2026-05-04 02:20:59 +03:00 |
|
Hamza-Ayed
|
c6040b3b85
|
Update: 2026-05-04 02:18:52
|
2026-05-04 02:18:52 +03:00 |
|
Hamza-Ayed
|
3ff2d8d8e1
|
Update: 2026-05-04 02:14:03
|
2026-05-04 02:14:03 +03:00 |
|
Hamza-Ayed
|
303205d52d
|
Update: 2026-05-04 02:12:25
|
2026-05-04 02:12:25 +03:00 |
|
Hamza-Ayed
|
b21951e4c8
|
Update: 2026-05-04 02:10:24
|
2026-05-04 02:10:24 +03:00 |
|
Hamza-Ayed
|
ea1d78cb85
|
Update: 2026-05-04 02:05:03
|
2026-05-04 02:05:03 +03:00 |
|
Hamza-Ayed
|
ee37a4fa52
|
Update: 2026-05-04 02:03:26
|
2026-05-04 02:03:26 +03:00 |
|
Hamza-Ayed
|
2af604df7f
|
Update: 2026-05-04 02:00:51
|
2026-05-04 02:00:51 +03:00 |
|
Hamza-Ayed
|
5dd8fe46f3
|
Update: 2026-05-04 01:59:47
|
2026-05-04 01:59:47 +03:00 |
|
Hamza-Ayed
|
3976a5346b
|
Update: 2026-05-04 01:57:45
|
2026-05-04 01:57:45 +03:00 |
|
Hamza-Ayed
|
87d6b8b1c0
|
Update: 2026-05-04 01:55:05
|
2026-05-04 01:55:05 +03:00 |
|
Hamza-Ayed
|
282f33ca3a
|
Update: 2026-05-04 01:52:13
|
2026-05-04 01:52:13 +03:00 |
|
Hamza-Ayed
|
08106ac4ea
|
Update: 2026-05-04 01:46:58
|
2026-05-04 01:46:58 +03:00 |
|
Hamza-Ayed
|
90f2f6f6e3
|
Update: 2026-05-04 01:33:55
|
2026-05-04 01:33:55 +03:00 |
|
Hamza-Ayed
|
ad48142492
|
Update: 2026-05-04 00:50:30
|
2026-05-04 00:50:30 +03:00 |
|
Hamza-Ayed
|
79308d7f9b
|
Update: 2026-05-04 00:48:53
|
2026-05-04 00:48:53 +03:00 |
|
Hamza-Ayed
|
5abc22dcd8
|
Update: 2026-05-04 00:37:13
|
2026-05-04 00:37:14 +03:00 |
|
Hamza-Ayed
|
e9cea98e95
|
Update: 2026-05-04 00:29:31
|
2026-05-04 00:29:31 +03:00 |
|
Hamza-Ayed
|
b4ac1e8775
|
Update: 2026-05-04 00:27:42
|
2026-05-04 00:27:42 +03:00 |
|
Hamza-Ayed
|
cd85fcf2bd
|
Update: 2026-05-04 00:23:45
|
2026-05-04 00:23:45 +03:00 |
|
Hamza-Ayed
|
671db50f16
|
Update: 2026-05-04 00:13:56
|
2026-05-04 00:13:56 +03:00 |
|
Hamza-Ayed
|
8357add763
|
Update: 2026-05-04 00:09:02
|
2026-05-04 00:09:02 +03:00 |
|
Hamza-Ayed
|
2ac63eef47
|
Update: 2026-05-04 00:04:41
|
2026-05-04 00:04:41 +03:00 |
|
Hamza-Ayed
|
c1d31231b4
|
Update: 2026-05-04 00:01:44
|
2026-05-04 00:01:44 +03:00 |
|
Hamza-Ayed
|
b6db8da450
|
Update: 2026-05-03 23:57:27
|
2026-05-03 23:57:27 +03:00 |
|
Hamza-Ayed
|
bef134ea77
|
Update: 2026-05-03 23:08:56
|
2026-05-03 23:08:56 +03:00 |
|
Hamza-Ayed
|
87809ac893
|
Update: 2026-05-03 22:51:59
|
2026-05-03 22:51:59 +03:00 |
|
Hamza-Ayed
|
6d2c61497c
|
Update: 2026-05-03 22:38:30
|
2026-05-03 22:38:30 +03:00 |
|
Hamza-Ayed
|
13bbc29e0e
|
Update: 2026-05-03 22:35:31
|
2026-05-03 22:35:31 +03:00 |
|
Hamza-Ayed
|
2732229642
|
Update: 2026-05-03 22:26:56
|
2026-05-03 22:26:56 +03:00 |
|
Hamza-Ayed
|
ab9625839e
|
Update: 2026-05-03 22:15:40
|
2026-05-03 22:15:40 +03:00 |
|
Hamza-Ayed
|
089a2b76c0
|
Update: 2026-05-03 21:58:11
|
2026-05-03 21:58:11 +03:00 |
|
Hamza-Ayed
|
e1d4917369
|
Update: 2026-05-03 21:37:02
|
2026-05-03 21:37:02 +03:00 |
|
Hamza-Ayed
|
ff8f525c76
|
Update: 2026-05-03 21:32:45
|
2026-05-03 21:32:45 +03:00 |
|
Hamza-Ayed
|
214d96ee8d
|
Security Hardening: Phase 1-3 complete
- C1: Hash refresh tokens before DB storage (sha256)
- C2: Remove JWT_SECRET fallback, fail hard if missing
- H1: Enforce HTTP methods per route (405 on mismatch)
- H2: CORS with origin whitelist from CORS_ORIGIN env var
- H3: Redact sensitive fields (tokens, passwords) from logs
- M1: Build HmacMiddleware with replay attack prevention
- M2: Fix rate limiter race condition with flock LOCK_EX
- M3: Guard dd() — suppressed in production
- M4: Remove .env from git tracking, strengthen .gitignore
- I1: Add HSTS header (max-age=31536000)
|
2026-05-03 21:06:17 +03:00 |
|
Hamza-Ayed
|
b33513ebcf
|
Update: 2026-05-03 20:56:55
|
2026-05-03 20:56:55 +03:00 |
|
Hamza-Ayed
|
8af74f0621
|
Update: 2026-05-03 20:51:50
|
2026-05-03 20:51:50 +03:00 |
|
Hamza-Ayed
|
b0e79fd214
|
Update: 2026-05-03 20:47:13
|
2026-05-03 20:47:13 +03:00 |
|
Hamza-Ayed
|
bc35319f3c
|
Update: 2026-05-03 20:45:16
|
2026-05-03 20:45:16 +03:00 |
|
Hamza-Ayed
|
e2acce23c0
|
Fix case sensitivity in app folders
|
2026-05-03 20:33:29 +03:00 |
|
Hamza-Ayed
|
f78c8f5864
|
Update: 2026-05-03 20:23:16
|
2026-05-03 20:23:16 +03:00 |
|