No description

Pierre-Olivier Mercier 5451ec3918 fix(security): add HTTP security headers middleware ... Set X-Frame-Options, X-Content-Type-Options, Referrer-Policy, CSP, and Strict-Transport-Security on all responses to mitigate clickjacking, MIME sniffing, XSS, and downgrade attacks. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>		2026-03-06 15:30:48 +07:00
static	fix(security): redesign password reset tokens using crypto/rand with server-side storage	2026-03-06 15:30:48 +07:00
.drone.yml	Replace bindata by embed	2024-05-31 15:52:25 +02:00
.gitignore	chldapasswd is now a go module	2021-02-03 15:16:19 +01:00
addy.go	fix(security): add per-IP rate limiting to all authentication endpoints	2026-03-06 15:30:48 +07:00
change.go	fix(security): add per-IP rate limiting to all authentication endpoints	2026-03-06 15:30:48 +07:00
csrf.go	fix(security): redesign password reset tokens using crypto/rand with server-side storage	2026-03-06 15:30:48 +07:00
Dockerfile	Replace bindata by embed	2024-05-31 15:52:25 +02:00
go.mod	chore(deps): update dependency go to v1.26.0	2026-03-06 15:30:48 +07:00
go.sum	chore(deps): update module github.com/go-ldap/ldap/v3 to v3.4.12	2026-03-06 15:30:48 +07:00
ldap.go	fix(security): redesign password reset tokens using crypto/rand with server-side storage	2026-03-06 15:30:48 +07:00
login.go	fix(security): require configurable secret for X-Special-Auth docker registry bypass	2026-03-06 15:30:48 +07:00
lost.go	fix(security): add per-IP rate limiting to all authentication endpoints	2026-03-06 15:30:48 +07:00
main.go	fix(security): add HTTP security headers middleware	2026-03-06 15:30:48 +07:00
ratelimit.go	fix(security): add per-IP rate limiting to all authentication endpoints	2026-03-06 15:30:48 +07:00
renovate.json	Add renovate.json	2021-08-03 09:02:00 +00:00
reset.go	fix(security): add per-IP rate limiting to all authentication endpoints	2026-03-06 15:30:48 +07:00
static.go	fix(security): add HTTP security headers middleware	2026-03-06 15:30:48 +07:00