search

andreapollastri / cipi

Install and manage your server like a pro! With Cipi you don’t need to be a Sys Admin to deploy and manage websites and PHP applications powered by cloud VPS.
https://cipi.andreapollastri.net
1.09k stars 225 forks source link

Cipi Webapp security #388

Closed ubxty closed 2 years ago

ubxty commented 2 years ago

The webapp and api needs an enhanced security . Consider using passport as authentication provider .

donniewr commented 2 years ago

A brute force protection on the Cipi login page would be a good thing too.

ubxty commented 2 years ago

@Donniewr Yes and laravel natively support rate limiting , so those features can be used

andreapollastri commented 2 years ago

Hi this function is used and Cipi uses JWT standards! Anyway I'm v4 It will use Laravel Jetstream! So wait for new release!