feat: add origin validation and rate limiting for PDF endpoint

Browse Source

Security enhancements:
- Implement origin/referer validation middleware
- Add rate limiting (3 requests/min per IP)
- Default to production domain (juan.andres.morenorub.io)
- Verify all protection mechanisms working correctly

Documentation updates:
- Update README to reflect personal portfolio nature
- Remove template encouragement from README
- Add verification status to API-PROTECTION.md
- Document ALLOWED_ORIGINS configuration in .env.example

Cleanup:
- Remove templates.backup/ folder
- Remove old test screenshots

...

This commit is contained in:

juanatsap

2025-11-09 14:13:22 +00:00

parent 24b2401519

commit ea6ccf9cdd

9 changed files with 40 additions and 609 deletions

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Download Patch File Download Diff File Expand all files Collapse all files

tests/screenshots/old-full-rendered.png

BIN

Binary file not shown.

Side by Side Before Width:  |  Height:  |  Size: 8.3 KiB

tests/screenshots/old-fullpage.png

BIN

Binary file not shown.

Side by Side Before Width:  |  Height:  |  Size: 8.3 KiB