lukas.pupkalipinski/BanGUI
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
448 Commits 3 Branches 17 Tags
94bdabe622de52ef7cbefd8627e92b824cce1065
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Lukas 94bdabe622 TASK-016: Validate delete_log_path query parameter with allowlist 
- Extract path validation logic into shared helper function in
  backend/app/utils/path_utils.py (validate_log_path)
- Refactor AddLogPathRequest to use the helper function
- Apply the same validation to DELETE /api/config/jails/{name}/logpath
  endpoint by validating the log_path query parameter
- Return HTTP 422 with descriptive error if validation fails
- Add comprehensive unit tests for path validation
- Update Backend-Development.md with usage examples

This prevents path-traversal attacks on the delete_log_path endpoint
by ensuring all log paths are within allowlisted directories.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
2026-04-26 14:04:21 +02:00
.github/agents
chore: add GitHub Copilot agent, fix ESLint config, update task list
2026-03-13 13:48:20 +01:00
backend
TASK-016: Validate delete_log_path query parameter with allowlist
2026-04-26 14:04:21 +02:00
Docker
TASK-013: Add nginx security headers (CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy)
2026-04-26 13:35:15 +02:00
Docs
TASK-016: Validate delete_log_path query parameter with allowlist
2026-04-26 14:04:21 +02:00
fail2ban-master
Switch dashboard/map/history views to archive source for long-term data
2026-04-05 20:21:54 +02:00
frontend
fix(frontend): deduplicate setup status API calls using shared hook
2026-04-26 13:32:44 +02:00
.containerignore
chore: add Docker config files and fix fail2ban bind mount path
2026-03-03 20:38:32 +01:00
.dockerignore
chore: add Docker config files and fix fail2ban bind mount path
2026-03-03 20:38:32 +01:00
.gitignore
Fix BUG-001: resolve banaction interpolation error in fail2ban jails
2026-03-15 11:39:20 +01:00
Makefile
Add ban management features and update documentation
2026-03-06 20:33:42 +01:00
node:fs
Refactor frontend components and dependencies
2026-04-22 20:26:43 +02:00
path
Refactor frontend components and dependencies
2026-04-22 20:26:43 +02:00
pyproject.toml
chore: add root pyproject.toml for ruff configuration
2026-03-22 14:24:25 +01:00
pytest.ini
Add repo-root pytest config so async tests run from root
2026-03-17 17:55:54 +01:00
vite
Refactor frontend components and dependencies
2026-04-22 20:26:43 +02:00
Description
No description provided
11 MiB
Languages
Python 61.2%
TypeScript 24.9%
HTML 8.4%
Markdown 2.5%
Roff 0.9%
Other 2%