admin/goodgo-platform
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
99385d826347da800de8884382e14e601ea1f157
goodgo-platform/apps/api/src
History
Ho Ngoc Hai 99385d8263 feat(auth): validate KYC image URL hosts match MinIO bucket 
Closes TEC-2725. Backend KYC presign + submit endpoints already landed in
8f8e20f; this adds the remaining acceptance criterion — host validation on
presigned URLs accepted via /auth/kyc/submit.

- Add IMediaStorageService.isTrustedUrl(url) — host+bucket check, supports
  MINIO_TRUSTED_HOSTS for CDN aliases
- SubmitKycHandler rejects imageUrls pointing outside our MinIO bucket
- Update handler specs with mock + new untrusted-host test

Co-Authored-By: Paperclip <noreply@paperclip.ing>
2026-04-18 00:32:02 +07:00
..
modules
feat(auth): validate KYC image URL hosts match MinIO bucket
2026-04-18 00:32:02 +07:00
app.controller.ts
feat(api): add health check endpoints with @nestjs/terminus
2026-04-09 00:33:44 +07:00
app.module.ts
feat(api): add industrial, transfer, and reports backend modules
2026-04-16 09:11:16 +07:00
instrument.ts
feat: comprehensive seed, Lucide icons, grouped dashboard nav, API fixes
2026-04-13 11:13:04 +07:00
main.ts
fix(lint): enforce consistent-type-imports and fix import ordering across codebase
2026-04-16 05:13:56 +07:00