jennie/ghostguild-org
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
ghostguild-org/tests/server
History
Jennie Robinson Faber 4d44e7045c
Some checks failed
Test / playwright (push) Blocked by required conditions
Details
Test / Notify on failure (push) Blocked by required conditions
Details
Test / visual (push) Blocked by required conditions
Details
Test / vitest (push) Has been cancelled
Details
refactor(rate-limit): delegate auth limiting to handlers, add dev bypass 
Main's middleware-level auth limiter (5 req / 5 min, IP-only) duplicated
the handler-level limiter introduced earlier on this branch (5/hr IP +
3/hr per-email, blocks email enumeration across IPs). Drop the
middleware version and let the handlers own it.

Added ALLOW_DEV_TEST_ENDPOINTS bypass to the rateLimit utility so
parallel E2E runs from 127.0.0.1 don't exhaust per-IP/email budgets,
mirroring the existing middleware bypass.

Trimmed the obsolete middleware auth test; handler-level coverage lives
in tests/server/api/auth-{login,verify}.test.js. Switched IP-isolation
test to the payment path so it still exercises the limiter.
2026-04-27 19:18:34 +01:00
..
api refactor(helcim): collapse redundant Member queries in subscription.post.js 2026-04-27 19:16:32 +01:00
config feat(launch): security and correctness fixes for 2026-05-01 launch 2026-04-25 18:42:36 +01:00
helpers Add Vitest security test suite and update security evaluation doc 2026-03-01 12:30:06 +00:00
middleware refactor(rate-limit): delegate auth limiting to handlers, add dev bypass 2026-04-27 19:18:34 +01:00
models test(admin): cover AdminAlertDismissal dismissedAt default 2026-04-08 11:03:31 +01:00
tasks feat(slack): add background job to detect Slack workspace joins 2026-04-09 22:32:48 +01:00
utils refactor(helcim): normalize listHelcimCustomerCards return shape 2026-04-27 19:16:32 +01:00
setup.js refactor: extract escapeRegex and validateTagSlugs server utils 2026-04-09 23:51:56 +01:00