admin/changemaker.lite
1
0
Fork 0
Code Issues Packages Projects Releases 31 Wiki Activity
changemaker.lite/nginx
History
bunker-admin 5a0c4641a1 Security audit fixes, mobile responsiveness across 40+ admin pages 
Security hardening from Mar 31 audit:
- Separate login rate limit (10/15min) from general auth budget (15/15min)
- Timing-safe webhook secret comparison (Listmonk)
- Docs file creation ACL check (matches PUT/DELETE guards)
- Key separation warnings for GITEA_SSO_SECRET and SERVICE_PASSWORD_SALT
- Clear GITEA_ADMIN_PASSWORD from .env after auto-setup
- SQL injection prevention in effectiveness groupBy (pre-validated map)
- Token hashing for password reset and verification tokens

Mobile responsiveness (Phase 2C):
- Add MobilePageHeader component and useMobile hook
- Responsive table columns (hide secondary cols on mobile)
- scroll={{ x: 'max-content' }} across all data tables
- Mobile-adapted layouts for Dashboard, Settings, Calendar, SMS, Social pages
- Conditional toolbar buttons on mobile viewports

Infrastructure:
- Updated docker-compose and nginx templates
- Build script and mirror script updates

Bunker Admin
2026-03-31 18:30:17 -06:00
..
conf.d
Security audit fixes, mobile responsiveness across 40+ admin pages
2026-03-31 18:30:17 -06:00
.dockerignore
Add guided tour, media enhancements, error handling, and DevOps improvements
2026-03-26 10:31:51 -06:00
Dockerfile
Tonne of debugging - getting ready for the production builds
2026-02-16 10:44:18 -07:00
entrypoint.sh
Make embed proxy ports configurable via env vars for multi-instance deployments
2026-03-25 15:25:00 -06:00
nginx.conf
Security audit: fix 30 findings across auth, IDOR, XSS, path traversal, infrastructure
2026-03-27 08:47:24 -06:00