DAW/furt
2
0
Fork 0
Code Issues 11 Pull requests Projects Releases 3 Packages 1 Wiki Activity Actions
furt/.env.example
michael 901f5eb2d8 feat(auth): implement complete API-key authentication with modular architecture (#47) 
- Add comprehensive API-key authentication system with X-API-Key header validation
- Implement permission-based access control (mail:send, * for admin)
- Add rate-limiting system (60 req/hour per API key, 100 req/hour per IP)
- Refactor monolithic 590-line main.lua into 6 modular components (<200 lines each)
- Add IP-restriction support with CIDR notation (127.0.0.1, 10.0.0.0/8)
- Implement Hugo integration with CORS support for localhost:1313
- Add production-ready configuration with environment variable support
- Create comprehensive testing suite (auth, rate-limiting, stress tests)
- Add production deployment checklist and cleanup scripts

This refactoring transforms the API gateway from a single-file monolith into a
biocodie-compliant modular architecture while adding enterprise-grade security
features. Performance testing shows 79 RPS concurrent throughput with <100ms
latency. Hugo contact form integration tested and working. System is now
production-ready for deployment to walter/aitvaras.

Resolves #47
2025-06-24 22:01:38 +02:00

41 lines
1.1 KiB
Text
Raw Blame History

# Gitea-Konfiguration für Issue-Management
GITEA_URL=https://your-gitea-instance.com
REPO_OWNER=your-username
REPO_NAME=furt
GITEA_TOKEN=your-gitea-token-here
# Optional: Default-Assignee für Issues
DEFAULT_ASSIGNEE=your-username
# Lua-Konfiguration
LUA_COMMAND=lua51
LUA_VERSION=5.1
# Gateway-Konfiguration (für Entwicklung)
GATEWAY_PORT=8080
GATEWAY_LOG_LEVEL=info
# CORS-Konfiguration (comma-separated list)
# Development (default if not set):
# CORS_ALLOWED_ORIGINS=http://localhost:1313,http://127.0.0.1:1313
#
# Production example:
# CORS_ALLOWED_ORIGINS=https://yourdomain.com,https://www.yourdomain.com
CORS_ALLOWED_ORIGINS=http://localhost:1313,http://127.0.0.1:1313
# Service-Ports (für lokale Entwicklung)
FORMULAR2MAIL_PORT=8081
SAGJAN_PORT=8082
# SMTP-Konfiguration (für formular2mail)
SMTP_HOST=localhost
SMTP_PORT=25
SMTP_USERNAME=noreply@example.com
SMTP_PASSWORD=secret-password
SMTP_FROM=noreply@example.com
SMTP_TO=admin@example.com
# API-Schlüssel (generiere sichere Schlüssel für Produktion!)
HUGO_API_KEY=hugo-dev-key-change-in-production
ADMIN_API_KEY=admin-dev-key-change-in-production
Reference in a new issue View git blame Copy permalink