| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Add rate limiting on login and password reset endpoints | Thomas Vanbesien | 2026-03-22 | 2 | -0/+92 |
| | | | | | | | Track attempts per IP in a rate_limits table with a sliding time window. Login allows 5 failed attempts per 15 min, password reset allows 3 requests per 15 min. Old entries are purged automatically. | ||||
| * | Add session cookie hardening and Nginx security headers | Thomas Vanbesien | 2026-03-22 | 1 | -0/+11 |
| | | | | | | | Set httponly, samesite=Lax, and auto-detected secure flag on session cookies. Add X-Content-Type-Options, X-Frame-Options, and Content-Security-Policy headers in Nginx. Document both in README. | ||||
| * | Add upload security: size limit, per-user and site-wide post caps | Thomas Vanbesien | 2026-03-22 | 2 | -0/+35 |
| | | | | | | | Reject base64 payloads over 10 MB, limit users to 50 posts each, and cap total posts at 10,000 (~650 MB on disk). Document upload security model in README. | ||||
| * | Add favicon using webcam.svg | Thomas Vanbesien | 2026-03-22 | 1 | -0/+1 |
| | | |||||
| * | Replace home page with redirect to gallery or login | Thomas Vanbesien | 2026-03-21 | 2 | -12/+6 |
| | | |||||
| * | Add likes, comments, email notifications, and pagination to gallery | Thomas Vanbesien | 2026-03-21 | 6 | -22/+259 |
| | | |||||
| * | Add user's own posts grid and post deletion to editor page | Thomas Vanbesien | 2026-03-21 | 2 | -1/+51 |
| | | |||||
| * | Add editor with webcam/upload capture, overlay compositing, and gallery feed | Thomas Vanbesien | 2026-03-21 | 5 | -0/+349 |
| | | |||||
| * | Add profile page for editing username, email, password, and notifications | Thomas Vanbesien | 2026-03-21 | 4 | -8/+261 |
| | | |||||
| * | Add user authentication with email verification and password reset | Thomas Vanbesien | 2026-03-21 | 11 | -1/+526 |
| | | | | | | | Implements registration, login/logout, email verification via token, and password reset flow. Includes CSRF protection, flash messages, MailPit for dev email testing, and security docs in README. | ||||
| * | Initial project scaffold | Thomas Vanbesien | 2026-03-21 | 6 | -0/+201 |
| Set up MVC architecture with front controller, router, autoloader, database singleton, and Docker Compose stack (Nginx + PHP-FPM + MariaDB). Includes DB schema, responsive layout, dev tooling (php-cs-fixer, parallel-lint), and documentation. | |||||
 |
index : camagru | |
| Webcam and upload photo editing web app | Thomas Vanbesien |
| aboutsummaryrefslogtreecommitdiffstats |