Skip to content

docs: document security-related config + behavior changes#68

Merged
vazra merged 1 commit into
mainfrom
docs/security-changes
Apr 29, 2026
Merged

docs: document security-related config + behavior changes#68
vazra merged 1 commit into
mainfrom
docs/security-changes

Conversation

@vazra
Copy link
Copy Markdown
Owner

@vazra vazra commented Apr 29, 2026

User-facing documentation for the changes shipped in PRs 28-67. Covers new config knobs (management_addr, SIMPLEDEPLOY_DISABLE_PORT_LOOPBACK), session invalidation semantics, expanded compose validator rejection list, restore tar archive constraints, and login rate-limit / lockout behavior.

@vazra
docs: document security-related config + behavior changes from PRs 28-67
f597906 
- reference/configuration.md: management_addr (default 127.0.0.1),
  http_listen_addr now defaulted to :80 when tls.mode auto/local.
- reference/env-vars.md: SIMPLEDEPLOY_DISABLE_PORT_LOOPBACK; updated
  webhook SSRF note for DNS-rebind protection.
- reference/ports.md: dashboard local-only default; loopback rewrite for
  app ports, with opt-out via env var or explicit interface bindings.
- reference/compose-labels.md: new section listing all dangerous compose
  fields rejected by the validator (security_opt, devices, userns_mode,
  expanded caps, host-bind shim via driver_opts, etc.).
- guides/api-keys.md: expires_at on create + last_used_at in list.
- guides/users-roles.md: session invalidation behavior (token_version
  bumped on logout / password change / role change), per-(user,IP)
  lockout, dedicated login rate limit.
- operations/security-hardening.md: HKDF subkey for JWT signing, iss/aud
  binding, token_version, login limiter, lockout enumeration fix.
- operations/disaster-recovery.md: tar archive validation rejection
  rules + concurrency cap on upload-restore.
@vazra vazra merged commit 4536157 into main Apr 29, 2026
4 of 5 checks passed
@vazra vazra deleted the docs/security-changes branch April 29, 2026 20:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@vazra