tmdinosaurcenter/kiosk-guestbook
1
0
Fork 0
mirror of https://github.com/tmdinosaurcenter/kiosk-guestbook.git synced 2026-06-04 01:18:12 -06:00
Code Issues Packages Projects Releases Wiki Activity
89 Commits 1 Branch 7 Tags
aa7fefe497736d7c768aa5728a41e13820e7e87f
Commit Graph

3 Commits

Author SHA1 Message Date
steve ecdcc044b7 feat: add CSRF protection to all POST forms 
Installs Flask-WTF and enables CSRFProtect globally. Adds csrf_token
hidden fields to all four POST forms (login, delete entry, add user,
delete user, and the public guestbook form). Exempts the API endpoint
which uses header-based key auth instead.
 2026-03-28 23:23:53 -06:00
steve 94d6690e57 fix: add logout button to admin pages 2026-03-10 10:39:10 -06:00
steve 4f0a7df22a feat: add role-based access control with database-backed users 2026-03-10 10:29:42 -06:00