8384ad9432
- Docker: bind all backend/frontend ports to 127.0.0.1 only (was 0.0.0.0) - Docker: add shared jagd-network; portal uses container names instead of host ports - Fix: set-password endpoints now require valid invite token (drohnenfuehrer, stoeberhunde) - Fix: auth cookie secure flag enabled in production - Fix: password reset token no longer logged in production - Add: inviteLimiter (10/15min) on set-password routes in all three apps - Add: importUsers capped at 500 entries to prevent DoS - Refactor: rename handler -> drohnenfuehrer/stoeberhundefuehrer across all apps |
||
|---|---|---|
| .. | ||
| .gitignore | ||
| Dockerfile | ||
| docker-compose.yml | ||
| extra8002.conf | ||
| icon-192.png | ||
| icon-512.png | ||
| index.html | ||
| manifest.json | ||
| offline.html | ||
| sw.js | ||
