Hamza/musadaq-saas
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73 Commits 1 Branch 0 Tags
e9cea98e9549f8a4876fa68db165cb3bb3a1ff55
Commit Graph

19 Commits

Author SHA1 Message Date
Hamza-Ayed
bef134ea77 Update: 2026-05-03 23:08:56 2026-05-03 23:08:56 +03:00
Hamza-Ayed
87809ac893 Update: 2026-05-03 22:51:59 2026-05-03 22:51:59 +03:00
Hamza-Ayed
089a2b76c0 Update: 2026-05-03 21:58:11 2026-05-03 21:58:11 +03:00
Hamza-Ayed
e1d4917369 Update: 2026-05-03 21:37:02 2026-05-03 21:37:02 +03:00
Hamza-Ayed
214d96ee8d Security Hardening: Phase 1-3 complete 
- C1: Hash refresh tokens before DB storage (sha256)
- C2: Remove JWT_SECRET fallback, fail hard if missing
- H1: Enforce HTTP methods per route (405 on mismatch)
- H2: CORS with origin whitelist from CORS_ORIGIN env var
- H3: Redact sensitive fields (tokens, passwords) from logs
- M1: Build HmacMiddleware with replay attack prevention
- M2: Fix rate limiter race condition with flock LOCK_EX
- M3: Guard dd() — suppressed in production
- M4: Remove .env from git tracking, strengthen .gitignore
- I1: Add HSTS header (max-age=31536000)
 2026-05-03 21:06:17 +03:00
Hamza-Ayed
b0e79fd214 Update: 2026-05-03 20:47:13 2026-05-03 20:47:13 +03:00
Hamza-Ayed
f78c8f5864 Update: 2026-05-03 20:23:16 2026-05-03 20:23:16 +03:00
Hamza-Ayed
fdd850e3af Update: 2026-05-03 18:21:19 2026-05-03 18:21:19 +03:00
Hamza-Ayed
501fd96dc1 Update: 2026-05-03 18:01:58 2026-05-03 18:01:58 +03:00
Hamza-Ayed
4b40b1185f Update: 2026-05-03 17:32:57 2026-05-03 17:32:57 +03:00
Hamza-Ayed
0488c17107 🚀 مُصادَق: تحديث برمجي جديد 2026-05-03 16:43 2026-05-03 16:43:46 +03:00
Hamza-Ayed
31bb1bf565 🚀 مُصادَق: تحديث برمجي جديد 2026-05-03 14:27 2026-05-03 14:27:28 +03:00
Hamza-Ayed
cb69abe221 🚀 مُصادَق: تحديث برمجي جديد 2026-05-03 14:02 2026-05-03 14:02:18 +03:00
Hamza-Ayed
ea415e3a11 🚀 مُصادَق: تحديث برمجي جديد 2026-05-03 13:39 2026-05-03 13:39:05 +03:00
Hamza-Ayed
2de6a0adfd 🚀 مُصادَق: تحديث برمجي جديد 2026-05-03 13:19 2026-05-03 13:19:45 +03:00
Hamza-Ayed
ce9f14c7a3 🚀 مُصادَق: تحديث برمجي جديد 2026-05-03 02:38 2026-05-03 02:38:54 +03:00
Hamza-Ayed
5100fd786e fix: switch API routing to query string for Nginx compatibility 2026-05-03 01:34:18 +03:00
Hamza-Ayed
bbfdabad2f 🚀 مُصادَق: تحديث برمجي جديد 2026-05-03 01:31 2026-05-03 01:31:38 +03:00
Hamza-Ayed
d0e538408d 🚀 مُصادَق: الإطلاق الأولي للنظام المتكامل 2026-05-03 00:59:39 +03:00