sipher

Cete/sipher

Fork 0

Commit graph

Author	SHA1	Message	Date
Nixyan	75f3a0ed04	feat: enhance security and testing for federation routes. Added routes for uploading files to posts and initial logic of handling it client-side. - Added a new test suite for attack vectors targeting the /discover federation routes, ensuring (known) vulnerabilities are addressed. - Implemented a proxy function to check for blacklisted servers, enhancing security measures. - Introduced URL validation to prevent SSRF attacks by blocking internal addresses. - Updated package.json with a new test command for the attack tests. - Refactored server and route handling to improve type safety and error handling. - Added new middleware for blacklist checks and URL validation to prevent unauthorized access.	2026-03-11 11:48:38 -03:00
Nixyan	8309770be5	feat: add server discovery tests and enhance public key validation - Introduced a new test suite for server discovery functionality, ensuring proper registration and response handling. - Enhanced public key validation logic to include detailed error messages for invalid keys. - Updated package.json with a new test command for the discovery tests. - Removed outdated Playwright CI workflow configuration.	2026-03-10 14:05:04 -03:00
Nixyan	b1b80dd75b	feat: added auth page and the whole functionallity surrounding it. feat: added tests (not working currently, will fix later) chore: removed turnstile dep. will check later other options.	2026-03-06 16:21:42 -03:00

Author

SHA1

Message

Date

Nixyan

75f3a0ed04

feat: enhance security and testing for federation routes. Added routes for uploading files to posts and initial logic of handling it client-side.

- Added a new test suite for attack vectors targeting the /discover federation routes, ensuring (known) vulnerabilities are addressed.
- Implemented a proxy function to check for blacklisted servers, enhancing security measures.
- Introduced URL validation to prevent SSRF attacks by blocking internal addresses.
- Updated package.json with a new test command for the attack tests.
- Refactored server and route handling to improve type safety and error handling.
- Added new middleware for blacklist checks and URL validation to prevent unauthorized access.

2026-03-11 11:48:38 -03:00

Nixyan

8309770be5

feat: add server discovery tests and enhance public key validation

- Introduced a new test suite for server discovery functionality, ensuring proper registration and response handling.
- Enhanced public key validation logic to include detailed error messages for invalid keys.
- Updated package.json with a new test command for the discovery tests.
- Removed outdated Playwright CI workflow configuration.

2026-03-10 14:05:04 -03:00

Nixyan

b1b80dd75b

feat: added auth page and the whole functionallity surrounding it.

feat: added tests (not working currently, will fix later)

chore: removed turnstile dep. will check later other options.

2026-03-06 16:21:42 -03:00

3 commits