Skip to content
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
886 changes: 591 additions & 295 deletions junit.xml

Large diffs are not rendered by default.

7 changes: 4 additions & 3 deletions src/app.module.ts
Original file line number Diff line number Diff line change
Expand Up @@ -49,6 +49,7 @@ import { AuditController } from './common/controllers/audit.controller';

// Middleware
import { AuthRateLimitMiddleware } from './auth/middleware/auth.middleware';
import { HeaderValidationMiddleware } from './security/middleware/header-validation.middleware';
import { ObservabilityModule } from './observability/observability.module';

@Module({
Expand Down Expand Up @@ -146,11 +147,11 @@ import { ObservabilityModule } from './observability/observability.module';
export class AppModule implements NestModule {
configure(consumer: MiddlewareConsumer) {
consumer
// Header validation for security
.apply(HeaderValidationMiddleware)
.forRoutes('*')
// Auth rate limiting
.apply(AuthRateLimitMiddleware)
.forRoutes('/auth*');
// Global security middleware
// .apply(SecurityMiddleware) // Uncomment when SecurityModule is properly integrated
// .forRoutes('*');
}
}
9 changes: 6 additions & 3 deletions src/auth/auth.controller.ts
Original file line number Diff line number Diff line change
Expand Up @@ -163,7 +163,8 @@ export class AuthController {
})
@ApiOperation({
summary: 'Refresh access token',
description: 'Exchanges refresh token for new access token. Implements token rotation. Rate limit: 10 requests per minute.',
description:
'Exchanges refresh token for new access token. Implements token rotation. Rate limit: 10 requests per minute.',
})
@ApiResponse({
status: 200,
Expand Down Expand Up @@ -237,7 +238,8 @@ export class AuthController {
})
@ApiOperation({
summary: 'Request password reset email',
description: 'Sends password reset link to user email. Returns generic message for security. Rate limit: 3 requests per 15 minutes.',
description:
'Sends password reset link to user email. Returns generic message for security. Rate limit: 3 requests per 15 minutes.',
})
@ApiResponse({
status: 200,
Expand Down Expand Up @@ -274,7 +276,8 @@ export class AuthController {
})
@ApiOperation({
summary: 'Reset password using reset token',
description: 'Sets new password using token from password reset email. Token valid for 1 hour. Rate limit: 5 requests per 15 minutes.',
description:
'Sets new password using token from password reset email. Token valid for 1 hour. Rate limit: 5 requests per 15 minutes.',
})
@ApiResponse({
status: 200,
Expand Down
Loading
Loading