6bd23e7e8b
- Disable open /api/auth/register endpoint (gateway) - Require gateway session auth on Immich and Karakeep hooks proxies - Replace SHA-256 with bcrypt in fitness service (auth + seed) - Remove hardcoded Telegram user IDs from fitness seed - Add Secure flag to session cookie - Add domain allowlist and content-type validation to image proxy - Strengthen .gitignore (env variants, runtime data, test artifacts)
8 lines
139 B
Docker
8 lines
139 B
Docker
FROM python:3.12-slim
|
|
WORKDIR /app
|
|
RUN pip install bcrypt
|
|
COPY server.py .
|
|
EXPOSE 8095
|
|
ENV PYTHONUNBUFFERED=1
|
|
CMD ["python3", "server.py"]
|