curo/Business-Management
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
8ac1d8223b70211115ec847eecc61e2a04aa349a
Business-Management/backend/app
T
History
curo1305 e2c55556ac Switch JWT signing from HS256 to RS256 (4096-bit RSA) 
- Replace symmetric SECRET_KEY with JWT_PRIVATE_KEY / JWT_PUBLIC_KEY (PEM)
- Add iat claim to every token
- Add expand_newlines validator in config for single-line .env PEM values
- Add scripts/generate_jwt_keys.py key-generation helper
- Update security-auditor agent JWT checklist with RS256 enforcement rules
- Mark RS256 as done in TODO.md

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-04-13 23:00:35 +02:00
..
core
Switch JWT signing from HS256 to RS256 (4096-bit RSA)
2026-04-13 23:00:35 +02:00
models
Add profile feature, input sanitization, and stronger security checks
2026-04-13 18:15:47 +02:00
routers
Add admin user management with role-gated access
2026-04-13 18:40:05 +02:00
schemas
Add admin user management with role-gated access
2026-04-13 18:40:05 +02:00
__init__.py
Initial project scaffold: FastAPI + React/Vite + PostgreSQL SaaS starter
2026-04-12 15:00:44 +02:00
database.py
Initial project scaffold: FastAPI + React/Vite + PostgreSQL SaaS starter
2026-04-12 15:00:44 +02:00
deps.py
Harden admin route visibility: 404 not 403, redirect to /login
2026-04-13 18:46:33 +02:00
main.py
Add admin user management with role-gated access
2026-04-13 18:40:05 +02:00