calvin.erfmann/pangolin
1
0
Fork 0
mirror of https://github.com/fosrl/pangolin.git synced 2026-06-06 23:59:02 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
f617f93a94874bb0bb5d4ffa8f4f47b4082cd21d
pangolin/server
History
Marc Schäfer f617f93a94 test(middleware): add regression tests for cross-org site binding prevention 
Test the org-match logic in verifySiteAccess:
- Same org: allowed
- Cross-org: rejected with 403
- No prior org context (site-only routes): check skipped, normal flow

Test route stack ordering:
- verifySiteAccess runs after verifyResourceAccess/verifyTargetAccess
- verifySiteAccess runs before the target create/update handler

Test security scenarios for both WireGuard and newt site types.

Signed-off-by: Marc Schäfer <git@marcschaeferger.de>
2026-05-29 22:57:39 +00:00
..
auth
Merge branch 'resource-policies' into dev
2026-05-28 15:30:16 -07:00
db
Update postgres schema
2026-05-28 20:20:34 -07:00
emails
Adjust language
2026-05-01 10:48:09 -07:00
lib
Auto-create roles referenced in blueprints
2026-05-28 21:14:14 -07:00
license
add quantity check
2026-02-04 15:19:58 -08:00
middlewares
test(middleware): add regression tests for cross-org site binding prevention
2026-05-29 22:57:39 +00:00
private
Merge branch 'main' into dev
2026-05-28 17:46:42 -07:00
routers
fix(middleware): prevent cross-org site binding in target create/update
2026-05-29 22:44:16 +00:00
setup
Unstage ignored files
2026-05-28 20:27:25 -07:00
types
first pass
2026-02-24 17:58:11 -08:00
apiServer.ts
change logging
2026-04-21 20:51:59 -07:00
cleanup.ts
fix: revert investigative changes, keep root cause fixes only
2026-05-02 16:33:13 -04:00
extendZod.ts
openapi test
2025-04-06 16:06:50 -04:00
index.ts
Merge pull request #3085 from marcschaeferger-org/security-updates
2026-05-28 11:54:23 -07:00
integrationApiServer.ts
openapi and swagger ui improvements and cleanup
2026-03-02 21:59:41 -08:00
internalServer.ts
fix: revert investigative changes, keep root cause fixes only
2026-05-02 16:33:13 -04:00
logger.ts
Patch logger for ISO8601 TZ offsets and fix Docker build
2025-10-03 09:33:43 -04:00
nextServer.ts
Merge branch 'dev' of github.com:fosrl/pangolin into dev
2026-04-21 21:20:24 -07:00
openApi.ts
Merge branch 'dev' into feat/resource-policies
2026-03-04 16:46:33 +01:00