the-nexus

Timmy_Foundation/the-nexus

Fork 2

Commit Graph

Author	SHA1	Message	Date
Rockachopa	eb5f17917c	fix(#1514 ): add client-side auth and security tests for WebSocket gateway Some checks failed Review Approval Gate / verify-review (pull_request) Failing after 9s Details CI / test (pull_request) Failing after 1m1s Details CI / validate (pull_request) Failing after 1m2s Details - Add client-side token authentication in app.js for external connections - Skip auth for localhost (127.0.0.1, ::1, localhost) - Token read from localStorage ('nexus-ws-auth-token') - Add comprehensive security tests (tests/test_websocket_security.py) - Tests verify server binding, env vars, and client auth implementation Server-side fix already present on main via PR #1504: - HOST defaults to 127.0.0.1 - AUTH_TOKEN support via server.py authenticate_connection() - Rate limiting already implemented Closes #1514	2026-04-26 01:22:43 -04:00

Author

SHA1

Message

Date

Rockachopa

eb5f17917c

fix(#1514 ): add client-side auth and security tests for WebSocket gateway

Review Approval Gate / verify-review (pull_request) Failing after 9s

Details

CI / test (pull_request) Failing after 1m1s

Details

CI / validate (pull_request) Failing after 1m2s

Details

- Add client-side token authentication in app.js for external connections
- Skip auth for localhost (127.0.0.1, ::1, localhost)
- Token read from localStorage ('nexus-ws-auth-token')
- Add comprehensive security tests (tests/test_websocket_security.py)
- Tests verify server binding, env vars, and client auth implementation

Server-side fix already present on main via PR #1504:
- HOST defaults to 127.0.0.1
- AUTH_TOKEN support via server.py authenticate_connection()
- Rate limiting already implemented

Closes #1514

2026-04-26 01:22:43 -04:00

1 Commits