hatch-surf/internal/handler
Chris Anderson a63d2dbf62 Add security headers, rate limiting, and input validation middleware
- SecurityHeaders: X-Frame-Options, CSP, HSTS, X-XSS-Protection, etc.
- RateLimiter: in-memory sliding window, 100 req/min per IP
- ValidateSlug: alphanumeric + hyphens, 3-100 chars
- SanitizeSearchQuery: strips injection-prone characters
- REDIS_URL env var passthrough in docker-compose for future caching

Co-Authored-By: Paperclip <noreply@paperclip.ing>
2026-06-25 22:18:21 +02:00
..
api_v1_test.go test: add unit tests for handler and store packages 2026-06-24 05:07:50 +02:00
api_v1.go test: add unit tests for handler and store packages 2026-06-24 05:07:50 +02:00
handler_test.go test: add unit tests for handler and store packages 2026-06-24 05:07:50 +02:00
handler.go Add security headers, rate limiting, and input validation middleware 2026-06-25 22:18:21 +02:00
inspect.go feat(inspect): polish server-rendered request list page 2026-06-22 19:09:58 +02:00
mock.go feat: add one-click replay for captured requests 2026-06-22 16:58:42 +02:00
replay_test.go Add linting, formatting, and test infrastructure for Phase 1 2026-06-24 04:59:52 +02:00
replay.go feat: add one-click replay for captured requests 2026-06-22 16:58:42 +02:00
spaces_test.go Fix TestGuestFaceSearch to handle missing face service 2026-06-25 21:35:29 +02:00
spaces.go Add face service package for AWS Rekognition integration 2026-06-25 21:15:57 +02:00
sse.go feat(inspect): polish server-rendered request list page 2026-06-22 19:09:58 +02:00