guisea/openaccounting-server
1
0
Fork 0
forked from cybercinch/openaccounting-server
Code Issues 4 Pull Requests Releases 2 Activity
Files
feat-allow-uploads-document
openaccounting-server/config.storage.json.sample
Aaron Guise 8b6ba74ce9 feat: implement secure file upload system with JWT authentication 
- Add JWT-based secure file access for local storage with 1-hour expiry
- Implement GORM repository methods for attachment CRUD operations
- Add secure file serving endpoint with token validation
- Update storage interface to support user context in URL generation
- Add comprehensive security features including path traversal protection
- Update documentation with security model and configuration examples
- Add utility functions for hex/byte conversion and UUID validation
- Configure secure file permissions (0600) for uploaded files

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>
2025-07-03 15:45:25 +12:00

16 lines
396 B
Plaintext
Raw Permalink Blame History

{
"weburl": "https://yourapp.com",
"address": "localhost",
"port": 8080,
"apiprefix": "/api/v1",
"databasedriver": "sqlite",
"databasefile": "./openaccounting.db",
"storage": {
"backend": "local",
"local": {
"root_dir": "./uploads",
"base_url": "https://yourapp.com/files",
"signing_key": "your-secret-jwt-signing-key-change-this-in-production"
}
}
}
Reference in New Issue View Git Blame Copy Permalink