feat(hardening): rate limit + cron + backup #61
Loading…
Add table
Add a link
Reference in a new issue
No description provided.
Delete branch "feat/production-hardening"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Token-bucket en mémoire (src/lib/rate-limit) appliqué sur /api/signup (5/h), /api/password/reset-request (3/h), /api/bookings (10/h) avec header Retry-After. 4 tests vitest.
Tâches planifiées via POST /api/cron/run/[task] avec Bearer CRON_TOKEN : auto-cancel-stale-pending (annule les PENDING > 7 jours, audité), purge-reset-tokens (cleanup PasswordResetToken expirés).
Script bash scripts/backup-postgres.sh : pg_dump compressé + push MinIO via mc Docker + retention 30j. À brancher sur un systemd timer.