soeren/fotospiel-app
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity

implemented a lot of security measures

Browse Source
This commit is contained in:
Codex Agent
2025-12-09 20:29:32 +01:00
parent 4bdb93c171
commit 928d28fcaf
21 changed files with 953 additions and 134 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
routes/api.php
View File

@@ -108,6 +108,10 @@ Route::prefix('v1')->name('api.v1.')->group(function () {
->middleware('signed')
->name('photo-shares.asset');
Route::post('/events/{token}/upload', [EventPublicController::class, 'upload'])->name('events.upload');
Route::get('/branding/asset/{path}', [EventPublicController::class, 'brandingAsset'])
->where('path', '.*')
->middleware('signed')
->name('branding.asset');
Route::get('/gallery/{token}', [EventPublicController::class, 'gallery'])->name('gallery.show');
Route::get('/gallery/{token}/photos', [EventPublicController::class, 'galleryPhotos'])->name('gallery.photos');

4
routes/web.php
View File

@@ -338,4 +338,6 @@ Route::middleware('auth')->group(function () {
Route::post('/paddle/create-checkout', [PaddleCheckoutController::class, 'create'])->name('paddle.checkout.create');
});
Route::post('/paddle/webhook', [PaddleWebhookController::class, 'handle'])->name('paddle.webhook');
Route::post('/paddle/webhook', [PaddleWebhookController::class, 'handle'])
->middleware('throttle:paddle-webhook')
->name('paddle.webhook');