Harden systemd services, restrict file permissions further, add username blocklist and prevent more vulnerabilities

2025-11-22 10:51:36 +01:00 · 2024-12-08 14:33:33 +01:00
parent 46b8cb033c
commit 18210d501b
8 changed files with 73 additions and 14 deletions
--- a/rest-api/db/migrations/20240720074103_user_management_roles_jwt.sql
+++ b/rest-api/db/migrations/20240720074103_user_management_roles_jwt.sql
@@ -120,7 +120,7 @@ AS $$
 DECLARE
  _role NAME;
  _user_id UUID;
-  _exp INT := EXTRACT(EPOCH FROM CLOCK_TIMESTAMP())::INT + 86400;
+  _exp INT := EXTRACT(EPOCH FROM CLOCK_TIMESTAMP())::INT + 43200;
 BEGIN
  SELECT
    internal.user_role (login.username, login.pass) INTO _role;