xTr1m/GameList
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
350 Commits 4 Branches 0 Tags
a130cba41a7ebbc3503611954ff17dc6f077561d
Commit Graph

84 Commits

Author SHA1 Message Date
Frank Tovar
a130cba41a Harden CSRF/CSP and add hash version upgrades 2026-02-18 20:51:18 +01:00
Frank Tovar
3c7f3d2114 Add event-driven state sync with ETag optimization 2026-02-18 19:58:57 +01:00
Frank Tovar
26379eef1a Add voter tooltips across results emojis and average 2026-02-17 19:06:05 +01:00
Frank Tovar
d375b942ff Reduce frontend polling load and clean stale UI hooks 2026-02-08 21:57:47 +01:00
Frank Tovar
d2ab8a676f Harden auth validation against null request fields 2026-02-08 21:48:07 +01:00
Frank Tovar
2d2201d0a2 Decouple workflow services from HTTP result types 2026-02-08 21:43:07 +01:00
Frank Tovar
fe6a9d5da4 Harden owner and suggestion invariants for concurrent writes 2026-02-08 21:37:46 +01:00
Frank Tovar
1bb34c51bf Removed symbol requirement for password, fix formatting. 2026-02-08 20:44:44 +01:00
Frank Tovar
1c59d68a50 Add owner role and admin management controls 2026-02-08 19:01:58 +01:00
Frank Tovar
42e60d2a5a Harden app security controls from audit 2026-02-08 18:40:13 +01:00
Frank Tovar
e666e7c603 Require admin password for destructive admin actions 2026-02-08 15:05:10 +01:00
Frank Tovar
96a47020d8 Add admin status combobox to move voters back to suggest 2026-02-08 15:00:09 +01:00
Frank Tovar
02d15e9c50 Restrict results-close rollback to players with suggestions 2026-02-08 14:54:12 +01:00
Frank Tovar
5ec18d20ea Revert "Implement admin back-pass flow and guarded admin actions" 
This reverts commit 5595bfd3b1.
 2026-02-08 14:43:26 +01:00
Frank Tovar
5595bfd3b1 Implement admin back-pass flow and guarded admin actions 2026-02-08 14:20:38 +01:00
Frank Tovar
47fbec4512 Remove EF query warnings from test runs 2026-02-07 13:46:46 +01:00
Frank Tovar
b67753ff9e Code cleanup 2026-02-07 13:32:49 +01:00
Frank Tovar
abb9874c98 Refactor state transitions into workflow service 2026-02-07 13:27:02 +01:00
Frank Tovar
9d3947714a Require suggestion before entering vote phase 2026-02-07 13:18:55 +01:00
Frank Tovar
124fb62657 Code format 2026-02-07 02:42:33 +01:00
Frank Tovar
c765dd322b Refactor endpoint services to accept narrow inputs 2026-02-07 02:17:01 +01:00
Frank Tovar
5b06e279f3 Add analyzer and frontend lint guardrails 2026-02-07 02:12:00 +01:00
Frank Tovar
567502d665 Remove legacy reveal phase paths and rename reveal data loader 2026-02-07 01:49:38 +01:00
Frank Tovar
20daecd3eb Finalize API envelopes and close validation drift tasks 2026-02-07 01:35:56 +01:00
Frank Tovar
f615ef3a4a Standardize service errors with ProblemDetails envelope 2026-02-07 01:23:54 +01:00
Frank Tovar
79dc8f899f Introduce typed API responses and align workflow outputs 2026-02-07 01:19:51 +01:00
Frank Tovar
35d842d6ee Add explicit write transactions and deterministic ordering tests 2026-02-07 01:16:07 +01:00
Frank Tovar
0d60108036 Extract admin and results workflows into services 2026-02-07 01:06:22 +01:00
Frank Tovar
5d40d555d1 Extract suggestion and vote workflows into services 2026-02-07 01:01:10 +01:00
Frank Tovar
16fcf4a432 Extract shared auth request validation 2026-02-07 00:47:42 +01:00
Frank Tovar
b86343a59d Harden image URL validation against followed redirects 2026-02-07 00:46:03 +01:00
Frank Tovar
714914bb33 Extract shared suggestion validation and remove dead DTO 2026-02-07 00:37:43 +01:00
Frank Tovar
81c04e0866 Refactor phase reads to pure lookups and align admin docs 2026-02-07 00:36:04 +01:00
Frank Tovar
cfe7a24e12 Unfinalize everyone on suggestion linking changes 2026-02-06 23:31:31 +01:00
Frank Tovar
9da09315ea Lock display names at registration 2026-02-06 19:36:44 +01:00
Frank Tovar
c0756ff2c6 C# formatting 2026-02-05 20:39:12 +01:00
Frank Tovar
5b6fa7e407 Allow unlimited joker suggestions when granted repeatedly 2026-02-05 19:38:56 +01:00
Frank Tovar
a2dd212377 Harden suggestion update gating and joker cap 2026-02-05 19:36:31 +01:00
Frank Tovar
67a164e53b Expand test coverage to match specs 2026-02-05 18:57:25 +01:00
Frank Tovar
87fa1974dd Missing files 2026-02-05 17:34:14 +01:00
Frank Tovar
b48723d48f Use phase filters for suggestions; allow joker edge 2026-02-05 17:17:38 +01:00
Frank Tovar
e3d4e2e687 Enforce phase for suggestions with joker allowance 2026-02-05 17:15:30 +01:00
Frank Tovar
ffbf4aa05a Add phase requirement filter for vote/results endpoints 2026-02-05 17:13:09 +01:00
Frank Tovar
8176940d18 Centralize admin auth with endpoint filter 2026-02-05 17:11:17 +01:00
Frank Tovar
6b5f8a66c9 Remove admin key support; admin must be authenticated 2026-02-05 17:07:37 +01:00
Frank Tovar
52960a78bc Stop phase polling writes unless state changes 2026-02-05 17:04:52 +01:00
Frank Tovar
8e50b31a5b Harden screenshot validation against SSRF and add user-facing errors 2026-02-05 16:58:15 +01:00
Frank Tovar
1d28ea6568 Escape rendered suggestion content and validate URLs 2026-02-05 16:51:05 +01:00
Frank Tovar
a6265e8656 Switch to signed cookie auth and stop leaking player IDs 2026-02-05 16:28:22 +01:00
Frank Tovar
3dbe9c56ad Show player game counts with tooltip in admin table 2026-02-05 13:31:03 +01:00