siftlode/backend
npeter83 feb41f4514 feat(demo): hidden /auth/demo login + require_human guard
Whitelisted emails enter the shared demo user via /auth/demo (lazily
created, no OAuth token/scope), rate-limited per IP and answering
uniformly so it can't be hammered as an enumeration oracle. Add a
require_human dependency that blocks the demo account from quota-spending
sync endpoints and the OAuth upgrade flow, and surface is_demo on /api/me.
2026-06-16 09:17:21 +02:00
..
alembic feat(demo): demo-account schema + reusable rate limiter 2026-06-16 09:17:14 +02:00
app feat(demo): hidden /auth/demo login + require_human guard 2026-06-16 09:17:21 +02:00
alembic.ini feat: M1 foundation — compose stack, FastAPI, Google OAuth, encrypted tokens 2026-06-11 01:01:37 +02:00
Dockerfile feat: M1 foundation — compose stack, FastAPI, Google OAuth, encrypted tokens 2026-06-11 01:01:37 +02:00
entrypoint.sh chore: rebrand Subfeed -> Siftlode 2026-06-14 04:40:22 +02:00
log_config.json chore: structured timestamped logging across the backend 2026-06-11 04:26:18 +02:00
requirements.txt fix(security): patch cryptography CVEs, upgrade pip at build, harden /auth/upgrade 2026-06-14 05:59:34 +02:00