aboutsummaryrefslogtreecommitdiffstats
path: root/README.md
Commit message (Collapse)AuthorAgeFilesLines
* Add rate limiting on login and password reset endpointsThomas Vanbesien2026-03-221-0/+14
| | | | | | Track attempts per IP in a rate_limits table with a sliding time window. Login allows 5 failed attempts per 15 min, password reset allows 3 requests per 15 min. Old entries are purged automatically.
* Add session cookie hardening and Nginx security headersThomas Vanbesien2026-03-221-0/+26
| | | | | | Set httponly, samesite=Lax, and auto-detected secure flag on session cookies. Add X-Content-Type-Options, X-Frame-Options, and Content-Security-Policy headers in Nginx. Document both in README.
* Add chmod 600 guidance for .env file in READMEThomas Vanbesien2026-03-221-1/+6
|
* Add upload security: size limit, per-user and site-wide post capsThomas Vanbesien2026-03-221-0/+20
| | | | | | Reject base64 payloads over 10 MB, limit users to 50 posts each, and cap total posts at 10,000 (~650 MB on disk). Document upload security model in README.
* Add environment variables, MailPit, and composer clarifications to READMEThomas Vanbesien2026-03-211-3/+22
|
* Add user authentication with email verification and password resetThomas Vanbesien2026-03-211-0/+42
| | | | | | Implements registration, login/logout, email verification via token, and password reset flow. Includes CSRF protection, flash messages, MailPit for dev email testing, and security docs in README.
* Initial project scaffoldThomas Vanbesien2026-03-211-0/+116
Set up MVC architecture with front controller, router, autoloader, database singleton, and Docker Compose stack (Nginx + PHP-FPM + MariaDB). Includes DB schema, responsive layout, dev tooling (php-cs-fixer, parallel-lint), and documentation.
generated by cgit v1.2.3 (git 2.46.0) at 2026-04-16 17:57:42 +0000