rosslh/coolify
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
coolify/app/Http/Middleware
History
Andras Bacsai d3b8d70f08 fix(subscription): harden quantity updates and proxy trust behavior 
Centralize min/max server limits in Stripe quantity updates and wire them into
Livewire subscription actions with price preview/update handling.

Also improve host/proxy middleware behavior by trusting loopback hosts when FQDN
is set and auto-enabling secure session cookies for HTTPS requests behind
proxies when session.secure is unset.

Includes feature tests for loopback trust and secure cookie auto-detection.
2026-03-03 12:28:16 +01:00
..
ApiAbility.php feat: introduce root permission 2024-12-09 10:52:38 +01:00
ApiAllowed.php refactor(dns-validation): rename DNS validation functions for consistency and clarity, and remove unused code 2025-09-09 09:00:35 +02:00
ApiSensitiveData.php fix: root + read:sensive could read senstive data with a middlewarew 2024-12-09 11:10:35 +01:00
Authenticate.php
CanAccessTerminal.php refactor(auth): simplify access control logic in CanAccessTerminal and ServerPolicy by allowing all users to perform actions 2025-08-28 10:48:24 +02:00
CanCreateResources.php feat(acl): Change views/backend code to able to use proper ACL's later on. Currently it is not enabled. 2025-08-26 10:27:38 +02:00
CanUpdateResource.php feat(acl): Change views/backend code to able to use proper ACL's later on. Currently it is not enabled. 2025-08-26 10:27:38 +02:00
CheckForcePasswordReset.php chore: prepare for PR 2026-02-24 10:17:16 +01:00
DecideWhatToDoWithUser.php fix(team): improve team retrieval and session handling for users 2025-12-28 14:50:59 +01:00
EncryptCookies.php
PreventRequestsDuringMaintenance.php Fix styling 2024-06-10 20:43:34 +00:00
RedirectIfAuthenticated.php Fix styling 2024-06-10 20:43:34 +00:00
TrimStrings.php
TrustHosts.php fix(subscription): harden quantity updates and proxy trust behavior 2026-03-03 12:28:16 +01:00
TrustProxies.php fix(subscription): harden quantity updates and proxy trust behavior 2026-03-03 12:28:16 +01:00
ValidateSignature.php
VerifyCsrfToken.php fix(webhooks): exclude webhook routes from CSRF protection (#6200) 2025-07-18 19:04:08 +02:00