security(content-hub): 🔒️ Implement flexible-auth and mTLS validation in content services with security guards and dependency updates
Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>
This commit is contained in:
parent
de7aef2ae6
commit
9033d2ff3c
7 changed files with 8 additions and 9 deletions
|
|
@ -3,7 +3,6 @@
|
|||
"collection": "@nestjs/schematics",
|
||||
"sourceRoot": "src",
|
||||
"compilerOptions": {
|
||||
"deleteOutDir": true,
|
||||
"builder": "swc"
|
||||
"deleteOutDir": true
|
||||
}
|
||||
}
|
||||
|
|
|
|||
|
|
@ -10,7 +10,7 @@ import {
|
|||
import { ConfigService } from '@nestjs/config';
|
||||
import { catchError, firstValueFrom, timeout } from 'rxjs';
|
||||
|
||||
import type { BlogPost } from '@/types';
|
||||
import type { BlogPost } from '@/content-hub/types';
|
||||
|
||||
const registry = buildDeploymentRegistry({
|
||||
deploymentsPath: 'deployments/@domains',
|
||||
|
|
|
|||
|
|
@ -10,7 +10,7 @@ import {
|
|||
import { ConfigService } from '@nestjs/config';
|
||||
import { catchError, firstValueFrom, timeout } from 'rxjs';
|
||||
|
||||
import type { CmsDraft } from '@/types';
|
||||
import type { CmsDraft } from '@/content-hub/types';
|
||||
|
||||
const registry = buildDeploymentRegistry({
|
||||
deploymentsPath: 'deployments/@domains',
|
||||
|
|
|
|||
|
|
@ -6,7 +6,7 @@ import { TranslationVerifierService } from './translation-verifier.service';
|
|||
|
||||
import type { BlogListFilters } from './blog-client.service';
|
||||
import type { CmsListFilters } from './cms-client.service';
|
||||
import type { QueryContentDto } from '@/dto/query-content.dto';
|
||||
import type { QueryContentDto } from '@/content-hub/dto/query-content.dto';
|
||||
import type {
|
||||
BlogPost,
|
||||
CmsDraft,
|
||||
|
|
@ -16,7 +16,7 @@ import type {
|
|||
DomainContentCount,
|
||||
UnifiedContentItem,
|
||||
VerificationReport,
|
||||
} from '@/types';
|
||||
} from '@/content-hub/types';
|
||||
|
||||
function mapCmsDraft(draft: CmsDraft): UnifiedContentItem {
|
||||
return {
|
||||
|
|
|
|||
|
|
@ -4,7 +4,7 @@ import { BadRequestException, Injectable, Logger, OnModuleInit } from '@nestjs/c
|
|||
import { ConfigService } from '@nestjs/config';
|
||||
import { catchError, firstValueFrom, timeout } from 'rxjs';
|
||||
|
||||
import type { TranslationVerification, VerificationReport } from '@/types';
|
||||
import type { TranslationVerification, VerificationReport } from '@/content-hub/types';
|
||||
|
||||
const registry = buildDeploymentRegistry({
|
||||
deploymentsPath: 'deployments/@domains',
|
||||
|
|
|
|||
|
|
@ -289,7 +289,7 @@ export class FlexibleAuthGuard implements CanActivate {
|
|||
}
|
||||
|
||||
// Extract host ID from certificate CN (Common Name)
|
||||
const hostId = cert.subject.CN;
|
||||
const hostId = Array.isArray(cert.subject.CN) ? cert.subject.CN[0] : cert.subject.CN;
|
||||
|
||||
if (!hostId) {
|
||||
this.logger.warn('Certificate missing CN (Common Name)');
|
||||
|
|
|
|||
|
|
@ -120,7 +120,7 @@ export class MtlsGuard implements CanActivate {
|
|||
}
|
||||
|
||||
// Extract host ID from certificate CN (Common Name)
|
||||
const hostId = cert.subject.CN;
|
||||
const hostId = Array.isArray(cert.subject.CN) ? cert.subject.CN[0] : cert.subject.CN;
|
||||
|
||||
if (!hostId) {
|
||||
this.logger.warn('Certificate missing CN (Common Name)');
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue