Andras Bacsai
b3256d4df1
fix(security): harden model assignment and sensitive data handling
...
Restrict mass-assignable attributes across user/team/redis models and
switch privileged root/team creation paths to forceFill/forceCreate.
Encrypt legacy ClickHouse admin passwords via migration and cast the
correct ClickHouse password field as encrypted.
Tighten API and runtime exposure by removing sensitive team fields from
responses and sanitizing Git/compose error messages.
Expand security-focused feature coverage for command-injection and mass
assignment protections.
2026-03-29 20:56:04 +02:00
Andras Bacsai
9c3345318a
fix(user): ensure email attributes are stored in lowercase for consistency and prevent case-related issues
2025-09-05 17:44:34 +02:00
Andras Bacsai
63cff9e399
fix: lower case emails only
2024-11-03 15:30:45 +01:00
Jeremy Angele
6842904cb5
Remove deprecated fortify password policy and add a stricter one
2024-10-28 21:57:00 +01:00
Andras Bacsai
83549965ca
Refactor instanceSettings() function for improved code readability
2024-10-01 10:37:40 +02:00
Thijmen
d86274cc37
Fix styling
2024-06-10 20:43:34 +00:00
Andras Bacsai
165f0a3d4a
feat: add email verification for cloud
2023-10-09 14:20:55 +02:00
Andras Bacsai
f2228cec7b
testing php storm code cleanup and styling
2023-08-08 11:51:36 +02:00
Andras Bacsai
98d057a2ac
remove Logs::
2023-07-26 13:33:48 +02:00
Andras Bacsai
3f3036961e
test
2023-06-13 15:59:25 +02:00
Andras Bacsai
b097842d01
roles
2023-06-09 15:55:21 +02:00
Andras Bacsai
4156ba8908
fix instanceSettings
2023-05-16 17:09:50 +02:00
Andras Bacsai
50316c9cf6
settings view
2023-04-25 10:06:45 +02:00
Andras Bacsai
ff5ff7f310
Add root team + localhost (coolify host) in prod seeder
2023-04-14 12:54:29 +02:00
Andras Bacsai
1905ed0dc6
fix registration
2023-04-13 17:17:30 +02:00
Andras Bacsai
408236b6b1
wip
2023-04-13 15:48:27 +02:00
Andras Bacsai
e47d493776
Add users, teams, authentication, profile/login/register/navbar views
2023-03-24 14:54:17 +01:00
