GeneralBots/generalbots
2
1
Fork 0
Code Activity Actions 4
generalbots/src/security
History
Rodrigo Rodriguez (Pragmatismo) 928f29e888 feat(security): Complete security wiring and log audit 
SECURITY WIRING:
- Auth middleware wired to main router with AnonymousPath config
- CORS allowed origins loaded from bot_configuration database (config.csv)
- Zitadel auth config loads from Vault via SecretsManager
- No more env vars for sensitive config (only VAULT_* allowed)

LOG AUDIT:
- Added is_sensitive_config_key() check in ask_later.rs
- Sensitive config values (password, secret, token, key, etc) now logged as [REDACTED]
- Removed potential credential exposure in pending_info logs

CONFIG LOADING ORDER:
1. VAULT_ADDR and VAULT_TOKEN from .env
2. All secrets from Vault (gbo/directory for Zitadel)
3. Bot config from config.csv (cors-allowed-origins, etc)

Auth Config Paths:
- Anonymous: /health, /healthz, /api/health, /ws, /auth
- Public: /static, /favicon.ico
2025-12-28 19:41:33 -03:00
..
antivirus.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
auth.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
ca.rs feat(autotask): Implement AutoTask system with intent classification and app generation 2025-12-27 21:10:09 -03:00
cert_pinning.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
command_guard.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
cors.rs feat(security): Complete security wiring and log audit 2025-12-28 19:41:33 -03:00
error_sanitizer.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
headers.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
integration.rs feat(autotask): Implement AutoTask system with intent classification and app generation 2025-12-27 21:10:09 -03:00
mod.rs feat(security): Complete security wiring and log audit 2025-12-28 19:41:33 -03:00
mutual_tls.rs Remove all code comments and fix ratatui version 2025-12-23 18:40:58 -03:00
panic_handler.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
path_guard.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
rate_limiter.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
request_id.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
secrets.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
sql_guard.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
tls.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
validation.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
zitadel_auth.rs feat(security): Complete security wiring and log audit 2025-12-28 19:41:33 -03:00