morgane/EverShelf
1
0
Fork 0
Code Issues Pull Requests Actions 4 Packages Projects Releases Wiki Activity
Files
865cb561be9c924a7c6c1713fed04a66907660d9
EverShelf/data/.htaccess
T
dadaloop82 d33b0ca2fe Harden security, modularize API bootstrap, and fix scale SSE auth. 
Block web access to sensitive paths, require API_TOKEN for mutations, encrypt GitHub issue credentials in .env, auto-provision tokens for same-origin clients, and pass api_token in scale relay URLs since EventSource cannot send headers.

Co-authored-by: Cursor <cursoragent@cursor.com>
2026-06-03 18:04:19 +00:00

3 lines
92 B
ApacheConf
Raw Blame History

# Deny all direct HTTP access to runtime data (DB, tokens, caches, logs)
Require all denied
Reference in New Issue View Git Blame Copy Permalink