kawa/SharepointToolbox-Web
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
c4a1775d7dfffbeaca8ec9c6be3b26913d08d842
SharepointToolbox-Web/Services/Auth
T
History
kawa c4a1775d7d Harden auth, headers, and container per OWASP review 
- Add per-account lockout + IP rate limiter on local sign-in (A07)
- Emit CSP and security headers on every response (A05)
- Run container as non-root `app`, /data 0700 (A05/A02)
- Stop reflecting raw token-endpoint body into redirect URL (A09)
- Handle missing refresh_token in connect callback without a 500

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
2026-06-11 14:30:19 +02:00
..
AppRegistrationService.cs
Add scheduled reports + app-only cert auth; fix tenant-wide user-access audit
2026-06-08 17:55:28 +02:00
CertProvisioningService.cs
Add scheduled reports + app-only cert auth; fix tenant-wide user-access audit
2026-06-08 17:55:28 +02:00
IAppRegistrationService.cs
Add scheduled reports + app-only cert auth; fix tenant-wide user-access audit
2026-06-08 17:55:28 +02:00
ICertProvisioningService.cs
Add scheduled reports + app-only cert auth; fix tenant-wide user-access audit
2026-06-08 17:55:28 +02:00
ITokenRefreshService.cs
Initial commit
2026-06-02 10:56:03 +02:00
IUserService.cs
Fix role change silently failing via @bind
2026-06-11 10:10:00 +02:00
TokenRefreshService.cs
Initial commit
2026-06-02 10:56:03 +02:00
UserService.cs
Harden auth, headers, and container per OWASP review
2026-06-11 14:30:19 +02:00