PostERG/xamxam
1
0
Fork 0
mirror of https://codeberg.org/PostERG/xamxam.git synced 2026-05-06 11:09:18 +02:00
Code Issues Packages Projects Releases Wiki Activity
287 Commits 1 Branch 0 Tags
7e26351f4b05e76786e38daac47e8bc67e7dd1ec
Commit Graph

5 Commits

Author SHA1 Message Date
Pontoporeia
b45e6c50cc fix: admin CSP allow inline scripts 
script-src 'self' 'unsafe-inline' added to admin Content-Security-Policy.
default-src 'self' was blocking OverType editor init block and
the dev live-reload poller. Admin section is auth-gated so
unsafe-inline is acceptable.
 2026-04-08 14:14:37 +02:00
Pontoporeia
e6960f0c9c fix: RateLimit permission denied — code + deploy scripts 
RateLimit.php:
- Silence mkdir() with @ operator
- Guard file_put_contents with is_writable() check (graceful degrade)

scripts/deploy-server.sh + setup-server.sh:
- mkdir -p storage/cache/rate_limit on every deploy
- chown www-data:posterg + chmod 2775 on storage/cache/
  so php-fpm can always write rate limit files
 2026-04-06 16:45:14 +02:00
Pontoporeia
756ddb5765 fix: RateLimit graceful degradation on permission denied 
Silence mkdir() with @ operator; guard file_put_contents with
is_writable() check. When storage/cache/rate_limit is not writable
by php-fpm, requests are allowed through instead of throwing
warnings that flood the nginx error log.
 2026-04-06 16:40:55 +02:00
Pontoporeia
7208292c0e deploy-nginx: add recipe, upload scripts to /tmp, print sudo instructions 2026-03-02 16:08:45 +01:00
Pontoporeia
52978aa658 ops: simplify justfile, guard deploy-db, extract scripts, fix .gitignore 2026-03-02 16:08:45 +01:00