Gan, Jimmy 9683cd3165
Deploy Dashboard / deploy (push) Successful in 1m26s
Add security improvements: refresh tokens, passkeys, CSP, audit logging, TOTP encryption
- Shorten access token to 30min with 7-day refresh token flow
- Add WebAuthn passkey registration and login with TOTP fallback
- Add Content-Security-Policy header
- Add audit logging middleware to /volume1/docker/nas-dashboard/audit.log
- Block /volume1/docker/ in files endpoint
- Encrypt TOTP secret at rest with Fernet (derived from SECRET_KEY)
- New deps: py_webauthn, cryptography
2026-02-22 11:04:40 +08:00
S
Description
No description provided
4.2 MiB
Languages
Python 58.2%
Svelte 32.2%
JavaScript 5.6%
Shell 3.3%
Dockerfile 0.3%
Other 0.3%