nemunaire/chldapasswd
1
0
Fork 0
Code Issues Pull requests 1 Releases Activity
No description
48 commits 2 branches 0 tags 530 KiB
  • Go 50.1%
  • CSS 26.9%
  • HTML 22.4%
  • Dockerfile 0.6%
Find a file
Pierre-Olivier Mercier 2a9eec233a fix(security): add per-IP rate limiting to all authentication endpoints 
Implement sliding window rate limiter to prevent brute-force attacks:
- /auth and /login: 20 requests/minute per IP
- /change: 10 POST requests/minute per IP
- /lost: 5 POST requests/minute per IP (prevents email spam and user enumeration)
- /reset: 10 POST requests/minute per IP
- /api/v1/aliases: 30 requests/minute per IP

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-03-06 15:30:48 +07:00
static fix(security): redesign password reset tokens using crypto/rand with server-side storage 2026-03-06 15:30:48 +07:00
.drone.yml Replace bindata by embed 2024-05-31 15:52:25 +02:00
.gitignore chldapasswd is now a go module 2021-02-03 15:16:19 +01:00
addy.go fix(security): add per-IP rate limiting to all authentication endpoints 2026-03-06 15:30:48 +07:00
change.go fix(security): add per-IP rate limiting to all authentication endpoints 2026-03-06 15:30:48 +07:00
csrf.go fix(security): redesign password reset tokens using crypto/rand with server-side storage 2026-03-06 15:30:48 +07:00
Dockerfile Replace bindata by embed 2024-05-31 15:52:25 +02:00
go.mod chore(deps): update dependency go to v1.26.0 2026-03-06 15:30:48 +07:00
go.sum chore(deps): update module github.com/go-ldap/ldap/v3 to v3.4.12 2026-03-06 15:30:48 +07:00
ldap.go fix(security): redesign password reset tokens using crypto/rand with server-side storage 2026-03-06 15:30:48 +07:00
login.go fix(security): add per-IP rate limiting to all authentication endpoints 2026-03-06 15:30:48 +07:00
lost.go fix(security): add per-IP rate limiting to all authentication endpoints 2026-03-06 15:30:48 +07:00
main.go fix(security): redesign password reset tokens using crypto/rand with server-side storage 2026-03-06 15:30:48 +07:00
ratelimit.go fix(security): add per-IP rate limiting to all authentication endpoints 2026-03-06 15:30:48 +07:00
renovate.json Add renovate.json 2021-08-03 09:02:00 +00:00
reset.go fix(security): add per-IP rate limiting to all authentication endpoints 2026-03-06 15:30:48 +07:00
static.go Replace bindata by embed 2024-05-31 15:52:25 +02:00