senke/veza
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
veza/veza-backend-api/internal
History
senke 33d1aa988c [BE-SEC-005] security: Implement rate limiting for authentication endpoints 
- Applied RegisterRateLimit to POST /auth/register (3 attempts/hour)
- Applied PasswordResetRateLimit to password reset endpoints (3 attempts/hour)
- Added VerifyEmailRateLimit for POST /auth/verify-email (5 attempts/hour)
- Added ResendVerificationRateLimit for POST /auth/resend-verification (3 attempts/hour)
- Login endpoint already had rate limiting (5 attempts/15min)
- All rate limits are IP-based and use Redis for persistence
- Rate limiting disabled in test/e2e environments

Phase: PHASE-4
Priority: P1
Progress: 7/267 (2.6%)
2025-12-24 12:05:35 +01:00
..
api [BE-SEC-005] security: Implement rate limiting for authentication endpoints 2025-12-24 12:05:35 +01:00
common refonte: backend-api go first; phase 1 2025-12-12 21:34:34 -05:00
config stabilizing apps/web: THIRD BATCH - FIXED Playwright 2025-12-21 18:55:51 -05:00
core [BE-API-029] be-api: Implement shared track access endpoint validation 2025-12-24 11:45:27 +01:00
database stabilizing apps/web: THIRD BATCH - FIXED Playwright 2025-12-21 18:55:51 -05:00
dto [BE-API-001] api: Implement 2FA endpoints (setup, verify, disable) 2025-12-23 01:40:28 +01:00
email STABILISATION: phase 3–5 – API contract, tests & chat-server hardening 2025-12-06 17:21:59 +01:00
errors refactor(marketplace): enforce unified api response envelope 2025-12-06 17:39:04 +01:00
eventbus adding initial backend API (Go) 2025-12-03 20:29:37 +01:00
features adding initial backend API (Go) 2025-12-03 20:29:37 +01:00
handlers [BE-API-040] api: Implement user list endpoint 2025-12-24 11:59:56 +01:00
infrastructure STABILISATION: phase 3–5 – API contract, tests & chat-server hardening 2025-12-06 17:21:59 +01:00
interfaces adding initial backend API (Go) 2025-12-03 20:29:37 +01:00
jobs STABILISATION: phase 3–5 – API contract, tests & chat-server hardening 2025-12-06 17:21:59 +01:00
logging adding initial backend API (Go) 2025-12-03 20:29:37 +01:00
metrics stabilizing veza-backend-api: phase 1 2025-12-16 11:23:49 -05:00
middleware [BE-SEC-005] security: Implement rate limiting for authentication endpoints 2025-12-24 12:05:35 +01:00
models stabilizing veza-backend-api: phase 1 2025-12-16 11:23:49 -05:00
monitoring stabilizing veza-backend-api: P1 & P2 2025-12-16 13:34:08 -05:00
repositories [BE-API-011] be-api: Implement conversation participants endpoints 2025-12-23 10:49:17 +01:00
repository adding initial backend API (Go) 2025-12-03 20:29:37 +01:00
response stabilizing veza-backend-api: phase 1 2025-12-16 11:23:49 -05:00
security adding initial backend API (Go) 2025-12-03 20:29:37 +01:00
services [BE-API-040] api: Implement user list endpoint 2025-12-24 11:59:56 +01:00
testutils stabilizing veza-backend-api: phase 1 2025-12-16 11:23:49 -05:00
types adding initial backend API (Go) 2025-12-03 20:29:37 +01:00
utils P0 UUID Phase A: migrations + backend Go UUID refactor 2025-12-04 02:15:48 +01:00
validators STABILISATION: phase 3–5 – API contract, tests & chat-server hardening 2025-12-06 17:21:59 +01:00
workers stabilizing veza-backend-api: phase 1 2025-12-16 11:23:49 -05:00