Files
nas-tools/dashboard/backend/requirements.txt
T
Gan, Jimmy be1f3b3ad6 Add security improvements: refresh tokens, passkeys, CSP, audit logging, TOTP encryption
- Shorten access token to 30min with 7-day refresh token flow
- Add WebAuthn passkey registration and login with TOTP fallback
- Add Content-Security-Policy header
- Add audit logging middleware to /volume1/docker/nas-dashboard/audit.log
- Block /volume1/docker/ in files endpoint
- Encrypt TOTP secret at rest with Fernet (derived from SECRET_KEY)
- New deps: py_webauthn, cryptography
2026-02-22 11:04:40 +08:00

14 lines
219 B
Plaintext

fastapi==0.115.0
uvicorn[standard]==0.30.0
docker==7.1.0
httpx==0.27.0
python-multipart==0.0.9
psutil==6.1.0
pyjwt==2.8.0
passlib==1.7.4
pyotp==2.9.0
asyncssh==2.17.0
slowapi==0.1.9
webauthn==2.7.1
cryptography>=44.0.2