kawa/SharepointToolbox-Web
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
SharepointToolbox-Web/Services
T
History
kawa c4a1775d7d Harden auth, headers, and container per OWASP review 
- Add per-account lockout + IP rate limiter on local sign-in (A07)
- Emit CSP and security headers on every response (A05)
- Run container as non-root `app`, /data 0700 (A05/A02)
- Stop reflecting raw token-endpoint body into redirect URL (A09)
- Handle missing refresh_token in connect callback without a 500

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
2026-06-11 14:30:19 +02:00
..
Audit
Fix open-redirect token leak and related auth hardening
2026-06-11 11:39:20 +02:00
Auth
Harden auth, headers, and container per OWASP review
2026-06-11 14:30:19 +02:00
Export
Merge branch 'main' of https://git.azuze.fr/kawa/SharepointToolbox-Web
2026-06-02 17:13:09 +02:00
OAuth
Register Entra app via secretless device-code bootstrap
2026-06-02 11:47:23 +02:00
Reports
Add scheduled reports + app-only cert auth; fix tenant-wide user-access audit
2026-06-08 17:55:28 +02:00
Session
Merge branch 'main' of https://git.azuze.fr/kawa/SharepointToolbox-Web
2026-06-03 09:50:25 +02:00
BulkMemberService.cs
Initial commit
2026-06-02 10:56:03 +02:00
BulkOperationRunner.cs
Initial commit
2026-06-02 10:56:03 +02:00
BulkSiteService.cs
Initial commit
2026-06-02 10:56:03 +02:00
CsvValidationService.cs
Initial commit
2026-06-02 10:56:03 +02:00
DuplicatesService.cs
Initial commit
2026-06-02 10:56:03 +02:00
ElevationCoordinator.cs
Add backoff-retry to elevation for transient admin 403 and grant lag
2026-06-02 14:39:29 +02:00
FileTransferService.cs
Initial commit
2026-06-02 10:56:03 +02:00
FolderStructureService.cs
Initial commit
2026-06-02 10:56:03 +02:00
GraphUserDirectoryService.cs
Initial commit
2026-06-02 10:56:03 +02:00
IBulkMemberService.cs
Initial commit
2026-06-02 10:56:03 +02:00
IBulkSiteService.cs
Initial commit
2026-06-02 10:56:03 +02:00
ICsvValidationService.cs
Initial commit
2026-06-02 10:56:03 +02:00
IDuplicatesService.cs
Initial commit
2026-06-02 10:56:03 +02:00
IElevationCoordinator.cs
Wire auto-elevate ownership across all SharePoint operations
2026-06-02 14:16:12 +02:00
IFileTransferService.cs
Initial commit
2026-06-02 10:56:03 +02:00
IFolderStructureService.cs
Initial commit
2026-06-02 10:56:03 +02:00
IGraphUserDirectoryService.cs
Initial commit
2026-06-02 10:56:03 +02:00
ILibraryDiscoveryService.cs
Merge branch 'main' of https://git.azuze.fr/kawa/SharepointToolbox-Web
2026-06-02 17:39:52 +02:00
IOwnershipElevationService.cs
Initial commit
2026-06-02 10:56:03 +02:00
IPermissionsService.cs
Initial commit
2026-06-02 10:56:03 +02:00
ISearchService.cs
Initial commit
2026-06-02 10:56:03 +02:00
ISessionManager.cs
Initial commit
2026-06-02 10:56:03 +02:00
ISharePointGroupResolver.cs
Initial commit
2026-06-02 10:56:03 +02:00
ISiteDiscoveryService.cs
Merge pull request 'Add report logos and configurable folder scan depth' (#2) from feat/report-logos-and-scan-depth into main
2026-06-02 15:46:05 +02:00
IStorageService.cs
Initial commit
2026-06-02 10:56:03 +02:00
ISystemGroupTargetResolver.cs
Initial commit
2026-06-02 10:56:03 +02:00
ITemplateService.cs
Initial commit
2026-06-02 10:56:03 +02:00
IUserAccessAuditService.cs
Add scheduled reports + app-only cert auth; fix tenant-wide user-access audit
2026-06-08 17:55:28 +02:00
IVersionCleanupService.cs
Initial commit
2026-06-02 10:56:03 +02:00
LibraryDiscoveryService.cs
Merge branch 'main' of https://git.azuze.fr/kawa/SharepointToolbox-Web
2026-06-02 17:39:52 +02:00
OwnershipElevationService.cs
Instrument elevation path to diagnose ineffective grants
2026-06-02 14:35:48 +02:00
PermissionsService.cs
Initial commit
2026-06-02 10:56:03 +02:00
SearchService.cs
Initial commit
2026-06-02 10:56:03 +02:00
SharePointGroupResolver.cs
Add scheduled reports + app-only cert auth; fix tenant-wide user-access audit
2026-06-08 17:55:28 +02:00
SiteDiscoveryService.cs
Add scheduled reports + app-only cert auth; fix tenant-wide user-access audit
2026-06-08 17:55:28 +02:00
StorageService.cs
Wire auto-elevate ownership across all SharePoint operations
2026-06-02 14:16:12 +02:00
SystemGroupTargetResolver.cs
Initial commit
2026-06-02 10:56:03 +02:00
TemplateService.cs
Initial commit
2026-06-02 10:56:03 +02:00
UserAccessAuditService.cs
Add scheduled reports + app-only cert auth; fix tenant-wide user-access audit
2026-06-08 17:55:28 +02:00
VersionCleanupService.cs
Initial commit
2026-06-02 10:56:03 +02:00