foxerBN/crm-server
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Security improvements, role in user creation, todo filters fix

Browse Source 
- Remove better-auth dependency (unused)
- Update JWT secrets to stronger values
- Add ENCRYPTION_SALT env variable for password encryption
- Add role field to createUserSchema validator
- Accept role from body in admin.controller createUser
- Fix todo filters: add priority filter, handle completed param
- Remove .env.example (merged into .env)

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
This commit is contained in:
richardtekula
2025-12-03 09:54:03 +01:00
parent ba11af5773
commit 109cae1167
33 changed files with 694 additions and 2648 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/middlewares/security/rateLimiter.js
View File

@@ -70,7 +70,7 @@ export const apiRateLimiter = rateLimit({
*/
export const sensitiveOperationLimiter = rateLimit({
windowMs: 15 * 60 * 1000,
max: process.env.NODE_ENV === 'production' ? 3 : 50,
max: process.env.NODE_ENV === 'production' ? 10 : 50,
message: {
success: false,
error: {