sasheg/launcher
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
70 Commits 5 Branches 0 Tags
1199ca9e21dbe3ff37e1e4443dd80f0bd296858a
Commit Graph

5 Commits

Author SHA1 Message Date
SashegDev 1199ca9e21 Server: Fix /docs endpoint - allow openapi.json and swagger 
- Remove openapi.json, swagger-ui, api/docs from suspicious paths
- Fix is_suspicious_path() to allow swagger/openapi patterns
 2026-05-07 17:48:54 +00:00
SashegDev 81fbe028e8 Server: Auto-load public IP blocklists 
- Load known bad IPs from FireHOL blocklists on startup
- ~4400 IPs blocked by default
- Set PUBLIC_BLOCKLIST=false to disable
- Combined with manual BLOCKED_IPS env var
 2026-05-07 17:38:08 +00:00
SashegDev 513c07666b Server: Simplify IP filtering - only blacklist 
- Remove whitelist (not needed for public launcher)
- Only BLOCKED_IPS env var supported now
 2026-05-07 17:14:47 +00:00
SashegDev 04f97c3c80 Server: Add bot protection middleware 
- Global rate limiting (60 requests/minute per IP)
- IP whitelist/blacklist via ALLOWED_IPS and BLOCKED_IPS env vars
- Bot detection - silent 404 for suspicious paths (.env, phpinfo, etc.)
- Path traversal detection
- Reduced noise in logs from bot scanners
 2026-05-07 17:09:45 +00:00
Sashegdev 7670edbff7 server update 2026-04-04 14:57:15 +00:00