rosslh/coolify
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
coolify/app/Http/Controllers
History
Andras Bacsai bafb9a5a8b refactor(webhook): encrypt manual webhook secrets and tighten HMAC verification 
- Auto-generate a 40-char random secret for each manual_webhook_secret_* column on Application creation so new apps are never left with an empty secret.
- Add encrypted cast for the four webhook-secret columns; backfill migration re-encrypts existing plaintext values and fills missing ones.
- Reject webhook deliveries when the stored secret is empty (GitHub, GitLab, Bitbucket, Gitea manual endpoints).
- Bitbucket: require the sha256 algorithm prefix on X-Hub-Signature instead of trusting the client-supplied algo.
- GitLab: drop the ?? '' fallback on the token comparison.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
2026-04-19 12:52:23 +02:00
..
Api refactor: tighten team scoping on resource creation and admin nav (#9651) 2026-04-19 12:01:11 +02:00
Webhook refactor(webhook): encrypt manual webhook secrets and tighten HMAC verification 2026-04-19 12:52:23 +02:00
Controller.php refactor: split invitation endpoint into GET (show) and POST (accept) 2026-03-26 14:30:27 +01:00
OauthController.php Revert "rector: arrrrr" 2025-01-07 15:31:43 +01:00
UploadController.php feat: Refactor service database management and backup functionalities 2026-01-02 16:29:48 +01:00