Haschek-Solutions/http2pic
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
93 Commits 1 Branch 11 Tags
ada976a224878cdf797a325e1d5be6a905eebd4e
Commit Graph

18 Commits

Author SHA1 Message Date
Chris
6973522c45 fix: block non-http(s) schemes, sanitize API_KEY backslash, improve viewport error message 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-21 12:48:18 +02:00
Chris
4ab30bcc1d feat: opt-in SSRF protection via BLOCK_PRIVATE_IPS env var 2026-04-21 12:26:54 +02:00
Chris
9295115742 fix: use hash_equals for API key comparison and update config documentation 
- Replace direct API key comparison with hash_equals() to prevent timing oracle attacks
- Update CLAUDE.md to document all config options (URL, API_KEY, BLOCK_PRIVATE_IPS)
- Add placeholder defines to src/config.inc.php for local dev (not committed due to .gitignore)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-21 12:17:34 +02:00
Chris
efc9e6510c feat: optional API key auth via X-API-Key header or ?key= param 2026-04-21 12:11:23 +02:00
Chris
e7924f462e fix: reject zero-dimension viewport values 2026-04-21 12:04:05 +02:00
Chris
8590465c6a fix: viewport before page load, 60ms->60s timeout, viewport cap, generic errors 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-21 11:49:49 +02:00
Chris
7323eed789 fix: enhance error handling and improve URL decoding in http2pic class and index.php 2026-04-20 07:59:06 +02:00
Chris
7616dee994 fix: improve error handling and streamline screenshot response in index.php 2026-04-19 21:58:00 +02:00
Chris
4a548f50e7 fix: update URL format in docker-compose and enhance error handling in http2pic class 2026-04-19 21:27:04 +02:00
Chris
faea2b0899 fix: correct URL format in docker-compose files and improve viewport handling in index.php
All checks were successful
Build Container / docker (push) Successful in 28s
Details
2026-02-15 19:58:43 +01:00
Chris
6e0795bbdf url 2025-06-10 11:55:13 +02:00
Chris
5df5a0ad7a added logging
All checks were successful
Build Container / docker (push) Successful in 2m7s
Details
2025-06-10 11:50:24 +02:00
Chris
5e8f4e33e3 ups 2025-06-10 11:23:45 +02:00
Chris
469ef7f5ea container and dev preparations
Some checks failed
ci / docker (push) Failing after 11m20s
Details
2025-06-10 10:39:47 +02:00
Chris
fbe7613f97 working prototype, many features missing 2025-01-13 15:58:58 +00:00
Chris
028a4b54f4 api preparations for rework 2025-01-13 15:42:44 +00:00
Christian Haschek
f54d35c312 preparations and testing for a rewrite, ditching wkhtmltopdf for chrome-driver 2025-01-12 20:13:47 +00:00
Chris
cf07363a8d preparations for rewrite 2025-01-11 23:14:09 +01:00