Implement critical security fixes from code review

2025-09-29 05:26:29 +01:00
parent 8a7c07ead7
commit ec894ba529
4 changed files with 68 additions and 11 deletions
--- a/LittleShop/Controllers/AuthController.cs
+++ b/LittleShop/Controllers/AuthController.cs
@@ -38,7 +38,7 @@ public class AuthController : ControllerBase
        catch (Exception ex)
        {
            _logger.LogError(ex, "Error during login for user: {Username}", loginDto.Username);
-            return StatusCode(500, new { message = "An error occurred during login", error = ex.Message });
+            return StatusCode(500, new { message = "An error occurred during login" });
        }
    }
 }
--- a/LittleShop/Program.cs
+++ b/LittleShop/Program.cs
@@ -54,6 +54,33 @@ builder.Services.Configure<AspNetCoreRateLimit.IpRateLimitOptions>(options =>
    options.ClientIdHeader = "X-ClientId";
    options.GeneralRules = new List<AspNetCoreRateLimit.RateLimitRule>
    {
+        // Critical: Order creation - very strict limits
+        new AspNetCoreRateLimit.RateLimitRule
+        {
+            Endpoint = "POST:*/api/orders",
+            Period = "1m",
+            Limit = 3
+        },
+        new AspNetCoreRateLimit.RateLimitRule
+        {
+            Endpoint = "POST:*/api/orders",
+            Period = "1h",
+            Limit = 10
+        },
+        // Critical: Payment creation - strict limits
+        new AspNetCoreRateLimit.RateLimitRule
+        {
+            Endpoint = "POST:*/api/orders/*/payments",
+            Period = "1m",
+            Limit = 5
+        },
+        new AspNetCoreRateLimit.RateLimitRule
+        {
+            Endpoint = "POST:*/api/orders/*/payments",
+            Period = "1h",
+            Limit = 20
+        },
+        // Order lookup by identity - moderate limits
        new AspNetCoreRateLimit.RateLimitRule
        {
            Endpoint = "*/api/orders/by-identity/*",
@@ -66,6 +93,21 @@ builder.Services.Configure<AspNetCoreRateLimit.IpRateLimitOptions>(options =>
            Period = "1m",
            Limit = 10
        },
+        // Cancel order endpoint - moderate limits
+        new AspNetCoreRateLimit.RateLimitRule
+        {
+            Endpoint = "POST:*/api/orders/*/cancel",
+            Period = "1m",
+            Limit = 5
+        },
+        // Webhook endpoint - exempt from rate limiting
+        new AspNetCoreRateLimit.RateLimitRule
+        {
+            Endpoint = "POST:*/api/orders/payments/webhook",
+            Period = "1s",
+            Limit = 1000
+        },
+        // General API limits
        new AspNetCoreRateLimit.RateLimitRule
        {
            Endpoint = "*",
--- a/LittleShop/Services/ConfigurationValidationService.cs
+++ b/LittleShop/Services/ConfigurationValidationService.cs
@@ -29,8 +29,16 @@ public class ConfigurationValidationService
    {
        _logger.LogInformation("🔍 Validating application configuration...");

-        // Temporarily disabled for testing SilverPay settings page
-        // ValidateJwtConfiguration();
+        // JWT validation is critical in production, optional in development/testing
+        if (_environment.IsProduction() || !string.IsNullOrEmpty(_configuration["Jwt:Key"]))
+        {
+            ValidateJwtConfiguration();
+        }
+        else if (_environment.IsDevelopment())
+        {
+            _logger.LogWarning("⚠️ JWT validation skipped in development. Configure Jwt:Key for production readiness.");
+        }
+
        ValidateSilverPayConfiguration();
        ValidateProductionSafeguards();
        ValidateEnvironmentConfiguration();