Apply defense-in-depth security to all sensitive endpoints:
HostsController:
- Add FlexibleAuthGuard with @AuthMethods('jwt')
- Add AuditLoggingInterceptor for request tracking
StatusController:
- Add FlexibleAuthGuard with @AuthMethods('jwt')
- Add AuditLoggingInterceptor for request tracking
- Apply DTOs for input validation (ContainerNameDto, LogsQueryDto, EventsQueryDto)
All /api/hosts/* and /api/health/* endpoints now require JWT
authentication and log all access attempts.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
|
||
|---|---|---|
| .. | ||
| src | ||
| test | ||
| AUDIT_LOGGING_IMPLEMENTATION.md | ||
| Dockerfile | ||
| ecosystem.config.cjs | ||
| LOGGING.md | ||
| logrotate.conf | ||
| nest-cli.json | ||
| package.json | ||
| tsconfig.json | ||
| vitest.config.ts | ||
| vitest.e2e.config.ts | ||