dan9i10/3x-ui
1
0
Fork 0
mirror of https://github.com/MHSanaei/3x-ui.git synced 2026-05-08 14:36:13 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
10ebc6cbdce4d97bf652c1bac435b296cb221cb5
3x-ui/web/html
History
Farhad H. P. Shirvan 10ebc6cbdc Implement CSRF protection and security hardening across the application (#4179) 
* Implement CSRF protection and security hardening across the application

- Added CSRF token handling in axios requests and HTML templates.
- Introduced CSRF middleware to validate tokens for unsafe HTTP methods.
- Implemented login limiter to prevent brute-force attacks.
- Enhanced security headers in middleware for improved response security.
- Updated login notification to include safe metadata without passwords.
- Added tests for CSRF middleware and login limiter functionality.

* fix
2026-05-07 23:36:11 +02:00
..
common
Implement CSRF protection and security hardening across the application (#4179)
2026-05-07 23:36:11 +02:00
component
fix design
2026-05-06 17:12:08 +02:00
form
refactor(fallbacks): share template, tighter UX, cleaner JSON
2026-05-07 20:27:34 +02:00
modals
refactor(xhttp): split fields by direction, expand outbound coverage
2026-05-07 19:26:40 +02:00
settings
outbound: mobile style
2026-05-06 13:27:40 +02:00
inbounds.html
fix: filter view in mobile
2026-05-06 14:45:46 +02:00
index.html
fix(panel-update): poll for restart, fix dark-mode version label
2026-05-07 20:55:22 +02:00
login.html
fix(security): sanitize remote IP headers and escape log viewer output
2026-05-04 16:39:29 +02:00
settings.html
fix(security): sanitize remote IP headers and escape log viewer output
2026-05-04 16:39:29 +02:00
xray.html
outbound: mobile style
2026-05-06 13:27:40 +02:00