chore: checkpoint before block builder refactor
This commit is contained in:
@@ -59,7 +59,7 @@ PreRegister is a Laravel 11 application for festival ticket pre-registration. Vi
|
||||
|
||||
## Security
|
||||
- CSRF on all forms
|
||||
- Rate limiting on public endpoints (`throttle:10,1`)
|
||||
- Rate limiting on public endpoints (`config/preregister.php` → `public_requests_per_minute`, applied in `routes/web.php`)
|
||||
- Never expose API keys in frontend, logs, or responses
|
||||
- Validate and restrict file uploads (image types, max size)
|
||||
- UUID slugs prevent URL enumeration
|
||||
|
||||
Reference in New Issue
Block a user