rosslh/coolify
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
15048 commits 1 branch 0 tags 69 MiB
Commit graph

12 commits

Author SHA1 Message Date
Andras Bacsai
b3256d4df1 fix(security): harden model assignment and sensitive data handling 
Restrict mass-assignable attributes across user/team/redis models and
switch privileged root/team creation paths to forceFill/forceCreate.

Encrypt legacy ClickHouse admin passwords via migration and cast the
correct ClickHouse password field as encrypted.

Tighten API and runtime exposure by removing sensitive team fields from
responses and sanitizing Git/compose error messages.

Expand security-focused feature coverage for command-injection and mass
assignment protections.
 2026-03-29 20:56:04 +02:00
peaklabs-dev
a43805e24b
fix: silent return if envs are empty or not set. 2025-01-16 22:02:02 +01:00
peaklabs-dev
ca56b1462d
fix: success message 2025-01-16 19:09:18 +01:00
peaklabs-dev
5f581a8eac
Update RootUserSeeder.php 2025-01-16 18:43:40 +01:00
peaklabs-dev
3f3b782e60
disable existing user check to check the full functionality of the seeder 2025-01-16 18:39:50 +01:00
peaklabs-dev
e9d688d5ee
fix: add spacing around echo outputs 2025-01-16 18:33:54 +01:00
peaklabs-dev
0ced6a4376
feat: improved error handling and log output 2025-01-16 18:29:00 +01:00
peaklabs-dev
c925ff049d
fix: regex username validation 2025-01-16 18:14:45 +01:00
peaklabs-dev
9288e60174
feat: email, username and password validation when they are set via envs 2025-01-16 18:07:40 +01:00
peaklabs-dev
4b6690e599
fix: RootUserSeeder 
- ensure that the existing root user is not overwritten
- ensure that the seeder can only be run once - creating the initial root user
 2025-01-16 17:51:26 +01:00
peaklabs-dev
3927e4850b
fix: disable registration after creating the root user 2025-01-16 17:34:46 +01:00
peaklabs-dev
b6633f083e
feat: Root user envs and seeding 2025-01-16 17:19:38 +01:00