12 Commits

Author	SHA1	Message	Date
Untone	82668768d0	🔒 Implement comprehensive security and DDoS protection ... ### Security Features: - **Rate Limiting**: Redis-based IP tracking with configurable limits - General: 100 requests/minute (5min block) - Upload: 10 requests/5min (10min block) - Auth: 20 requests/15min (30min block) - **Request Validation**: Path length, header count, suspicious patterns - **Attack Detection**: Admin paths, script injections, bot patterns - **Enhanced JWT**: Format validation, length checks, character filtering - **IP Tracking**: X-Forwarded-For and X-Real-IP support ### Security Headers: - X-Content-Type-Options: nosniff - X-Frame-Options: DENY - X-XSS-Protection: 1; mode=block - Content-Security-Policy with strict rules - Strict-Transport-Security with includeSubDomains ### CORS Hardening: - Limited to specific domains: discours.io, new.discours.io - Restricted methods: GET, POST, OPTIONS only - Essential headers only ### Infrastructure: - Security middleware for all requests - Local cache + Redis for performance - Comprehensive logging and monitoring - Progressive blocking for repeat offenders ### Documentation: - Complete security guide (docs/security.md) - Configuration examples - Incident response procedures - Monitoring recommendations Version bump to 0.6.0 for major security enhancement.	2025-09-02 11:40:43 +03:00
Untone	112f102bb5	fmt	2025-09-01 22:58:03 +03:00
Untone	6c3262edbe	simpler-auth+no-overlay	2025-09-01 20:36:15 +03:00
Untone	ea92a376ed	docs	2025-08-02 00:18:09 +03:00
Untone	b471c66209	noheic-convertion	2024-11-13 11:32:50 +03:00
Untone	bc14d86018	heic-sys	2024-11-13 11:14:53 +03:00
Untone	be8c03eb11	quota-rollback+logs	2024-11-12 12:29:19 +03:00
Untone	a4ea55cf3c	store-uplaoded-path	2024-10-23 21:41:29 +03:00
Untone	5283a878ed	log4	2024-10-22 21:23:34 +03:00
Untone	1c27714455	proxy-reworked	2024-10-22 19:34:08 +03:00
Untone	8ff3f018b5	0.0.6-onecachekey	2024-10-22 09:38:30 +03:00
Untone	9fcce86075	handlers-refactored	2024-10-22 00:36:42 +03:00