Add trust proxy configuration and job ID validation

Adds `app.set('trust proxy', 1)` to `app.ts` for correct IP rate limiting and implements Zod validation for the `:id` parameter in the `GET /jobs/:id` route within `jobs.ts`.

Replit-Commit-Author: Agent
Replit-Commit-Session-Id: 418bf6f8-212b-4bb0-a7a5-8231a061da4e
Replit-Commit-Checkpoint-Type: full_checkpoint
Replit-Commit-Event-Id: 7049b42e-1d56-48f8-bf54-25cef7c7880b
Replit-Helium-Checkpoint-Created: true

artifacts/api-server/src/app.ts

@@ -4,6 +4,8 @@ import router from "./routes";
 
 const app: Express = express();
 
+app.set("trust proxy", 1);
+
 app.use(cors());
 app.use(express.json());
 app.use(express.urlencoded({ extended: true }));

artifacts/api-server/src/routes/jobs.ts

@@ -2,7 +2,7 @@ import { Router, type Request, type Response } from "express";
 import { randomUUID } from "crypto";
 import { db, jobs, invoices, type Job } from "@workspace/db";
 import { eq, and } from "drizzle-orm";
-import { CreateJobBody } from "@workspace/api-zod";
+import { CreateJobBody, GetJobParams } from "@workspace/api-zod";
 import { lnbitsService } from "../lib/lnbits.js";
 import { agentService } from "../lib/agent.js";
 import { pricingService } from "../lib/pricing.js";
@@ -190,7 +190,12 @@ router.post("/jobs", async (req: Request, res: Response) => {
 });
 
 router.get("/jobs/:id", async (req: Request, res: Response) => {
-  const { id } = req.params as { id: string };
+  const paramResult = GetJobParams.safeParse(req.params);
+  if (!paramResult.success) {
+    res.status(400).json({ error: "Invalid job id" });
+    return;
+  }
+  const { id } = paramResult.data;
 
   try {
     let job = await getJobById(id);