lukas.pupkalipinski/BanGUI
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
b9289a3b0ede3546c14e05e35d1a33ffecb1f826
BanGUI/backend/app
History
Lukas b9289a3b0e Fix: Remove socket path leak in fail2ban error responses 
- Change _fail2ban_connection_handler() to return generic message instead of
  leaking socket path in HTTP 502 response body
- Change _fail2ban_protocol_handler() to return generic message instead of
  leaking raw exception details in HTTP 502 response body
- Full error details are still logged server-side (error=str(exc)) for debugging
- Update Backend-Development.md with error message hygiene section explaining
  the pattern: generic user-friendly messages in HTTP responses, full details
  in server logs only

Fixes TASK-029: Fail2BanConnectionError leaks socket path in HTTP error responses

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
2026-04-26 15:21:35 +02:00
..
middleware
Refactor backend architecture and update documentation
2026-04-26 14:52:23 +02:00
models
TASK-016: Validate delete_log_path query parameter with allowlist
2026-04-26 14:04:21 +02:00
repositories
TASK-022: Hash session tokens in database for security
2026-04-26 14:36:21 +02:00
routers
TASK-016: Validate delete_log_path query parameter with allowlist
2026-04-26 14:04:21 +02:00
services
TASK-028: Add exception logging to fire-and-forget asyncio.create_task()
2026-04-26 15:17:30 +02:00
tasks
Add session cleanup task and update documentation
2026-04-26 12:49:13 +02:00
utils
TASK-028: Add exception logging to fire-and-forget asyncio.create_task()
2026-04-26 15:17:30 +02:00
__init__.py
Sync backend/frontend versions to Docker/VERSION and read version from it
2026-03-19 19:13:38 +01:00
config.py
TASK-026: Disable API docs in production, protect with BANGUI_ENABLE_DOCS setting
2026-04-26 15:09:51 +02:00
db.py
TASK-023: Make database migrations atomic
2026-04-26 14:40:27 +02:00
dependencies.py
Implement login endpoint rate limiting (TASK-007)
2026-04-26 12:40:52 +02:00
exceptions.py
Move config file exceptions into app.exceptions
2026-04-15 10:28:27 +02:00
main.py
Fix: Remove socket path leak in fail2ban error responses
2026-04-26 15:21:35 +02:00
startup.py
Add session cleanup task and update documentation
2026-04-26 12:49:13 +02:00