curo/Business-Management
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
0af5e8cc24b22478ca65bf6bb417fd4e277561e4
Business-Management/backend/app
T
History
curo1305 0af5e8cc24 Harden JWT: 8-hour expiry, add JWT vulnerability checks 
- Reduce ACCESS_TOKEN_EXPIRE_MINUTES from 24h to 8h (no permanent sessions)
- Add JWT_PATTERNS to security_check.py: algorithm=none, verify_exp=False,
  multi-day timedelta, oversized EXPIRE_MINUTES, hardcoded secret
- Add JWT security checklist to security-auditor agent
- Document auth/session security items in TODO.md

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-04-13 22:54:53 +02:00
..
core
Harden JWT: 8-hour expiry, add JWT vulnerability checks
2026-04-13 22:54:53 +02:00
models
Add profile feature, input sanitization, and stronger security checks
2026-04-13 18:15:47 +02:00
routers
Add admin user management with role-gated access
2026-04-13 18:40:05 +02:00
schemas
Add admin user management with role-gated access
2026-04-13 18:40:05 +02:00
__init__.py
Initial project scaffold: FastAPI + React/Vite + PostgreSQL SaaS starter
2026-04-12 15:00:44 +02:00
database.py
Initial project scaffold: FastAPI + React/Vite + PostgreSQL SaaS starter
2026-04-12 15:00:44 +02:00
deps.py
Harden admin route visibility: 404 not 403, redirect to /login
2026-04-13 18:46:33 +02:00
main.py
Add admin user management with role-gated access
2026-04-13 18:40:05 +02:00