GeneralBots/botserver
2
1
Fork 0
Code Issues Pull requests Projects Releases 323 Packages Wiki Activity Actions
botserver/src/security
History
Rodrigo Rodriguez e143968179 feat: Add JWT secret rotation and health verification 
SEC-02: Implement credential rotation security improvements

- Add JWT secret rotation to rotate-secret command
- Generate 64-character HS512-compatible secrets
- Automatic .env backup with timestamp
- Atomic file updates via temp+rename pattern
- Add health verification for rotated credentials
- Route rotate-secret, rotate-secrets, vault commands in CLI
- Add verification attempts for database and JWT endpoints

Security improvements:
- JWT_SECRET now rotatable (previously impossible)
- Automatic rollback via backup files
- Health checks catch configuration errors
- Clear warnings about token invalidation

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
2026-02-19 19:42:41 +00:00
..
auth_api Fix: Update source files and fix notify dependency reference 2026-02-13 22:30:57 +00:00
protection fix: Resolve unused import and variable warnings 2026-02-19 11:48:17 +00:00
antivirus.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
api_keys.rs Fix build errors and unused imports in core, security and package_manager modules 2026-01-24 22:04:47 -03:00
audit.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
auth.rs Refactor: Split large files into modular subdirectories 2026-02-12 21:09:30 +00:00
auth_provider.rs fix(server): update security modules and TODOs 2026-01-25 08:42:36 -03:00
ca.rs feat(autotask): Implement AutoTask system with intent classification and app generation 2025-12-27 21:10:09 -03:00
cert_pinning.rs Fix build errors and unused imports in core, security and package_manager modules 2026-01-24 22:04:47 -03:00
command_guard.rs fix: Resolve unused import and variable warnings 2026-02-19 11:48:17 +00:00
cors.rs fix(security): Fix unsafe code, CORS logic, and expect usage 2026-02-19 12:06:05 +00:00
csrf.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
dlp.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
encryption.rs Fix build errors and unused imports in core, security and package_manager modules 2026-01-24 22:04:47 -03:00
error_sanitizer.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
file_validation.rs feat: Add JWT secret rotation and health verification 2026-02-19 19:42:41 +00:00
headers.rs Serve HTMX locally - no CDN dependencies 2026-01-02 17:54:36 -03:00
integration.rs fix: Use PORT env var instead of BOTSERVER_PORT, default to port 9000 2026-02-17 14:43:16 +00:00
jwt.rs feat: Add JWT secret rotation and health verification 2026-02-19 19:42:41 +00:00
log_sanitizer.rs feat: Add JWT secret rotation and health verification 2026-02-19 19:42:41 +00:00
mfa.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
mod.rs feat: Add JWT secret rotation and health verification 2026-02-19 19:42:41 +00:00
mutual_tls.rs Remove all code comments and fix ratatui version 2025-12-23 18:40:58 -03:00
panic_handler.rs Fix build errors and unused imports in core, security and package_manager modules 2026-01-24 22:04:47 -03:00
passkey.rs Refactor: Split large files into modular subdirectories 2026-02-12 21:09:30 +00:00
passkey_handlers.rs Refactor: Split large files into modular subdirectories 2026-02-12 21:09:30 +00:00
passkey_service.rs Refactor: Split large files into modular subdirectories 2026-02-12 21:09:30 +00:00
passkey_types.rs Refactor: Split large files into modular subdirectories 2026-02-12 21:09:30 +00:00
password.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
path_guard.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
prompt_security.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
rate_limiter.rs fix: Resolve unused import and variable warnings 2026-02-19 11:48:17 +00:00
rbac_middleware.rs Fix: add /api/auth/me to public routes in RBAC 2026-02-04 14:25:14 -03:00
redis_csrf_store.rs feat: Add JWT secret rotation and health verification 2026-02-19 19:42:41 +00:00
redis_session_store.rs feat: Add JWT secret rotation and health verification 2026-02-19 19:42:41 +00:00
request_id.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
request_limits.rs feat: Add JWT secret rotation and health verification 2026-02-19 19:42:41 +00:00
safe_unwrap.rs feat: Add JWT secret rotation and health verification 2026-02-19 19:42:41 +00:00
secrets.rs Fix build errors and unused imports in core, security and package_manager modules 2026-01-24 22:04:47 -03:00
security_monitoring.rs Fix SafeCommand to allow shell scripts with redirects and command chaining 2026-01-08 23:50:38 -03:00
session.rs feat: Add JWT secret rotation and health verification 2026-02-19 19:42:41 +00:00
sql_guard.rs Allow dynamic tables from app_generator in db_api 2026-01-02 18:20:04 -03:00
tls.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
validation.rs feat: Add JWT secret rotation and health verification 2026-02-19 19:42:41 +00:00
webhook.rs Fix SafeCommand to allow shell scripts with redirects and command chaining 2026-01-08 23:50:38 -03:00
zitadel_auth.rs Refactor: Split large files into modular subdirectories 2026-02-12 21:09:30 +00:00