42aa04f58e
- auth_sensitive 명명 Rate Limit 정책 추가 (20회/15분/IP) - AuthController 3개 + PasswordController 2개 메서드에 EnableRateLimiting 적용 - 로그인 시도 제한 구현 (5회/15분, Redis 카운터, LoginAttemptExceeded 에러코드 활성화) - 비밀번호 찾기/임시 비밀번호 요청 제한 (3회/1시간, silent 반환) - AuthService 보안 이벤트 구조적 로깅 (ILogger 주입) - Swagger 429 응답 문서화 Closes #190
23 lines
861 B
XML
23 lines
861 B
XML
<Project Sdk="Microsoft.NET.Sdk">
|
|
|
|
<PropertyGroup>
|
|
<TargetFramework>net9.0</TargetFramework>
|
|
<ImplicitUsings>enable</ImplicitUsings>
|
|
<Nullable>enable</Nullable>
|
|
<UserSecretsId>b8d7099d-890d-4aaf-b758-0df8b5b339f8</UserSecretsId>
|
|
</PropertyGroup>
|
|
|
|
<ItemGroup>
|
|
<ProjectReference Include="..\SPMS.Domain\SPMS.Domain.csproj" />
|
|
</ItemGroup>
|
|
|
|
<ItemGroup>
|
|
<PackageReference Include="BCrypt.Net-Next" Version="4.0.3" />
|
|
<PackageReference Include="ClosedXML" Version="0.105.0" />
|
|
<PackageReference Include="Microsoft.Extensions.DependencyInjection.Abstractions" Version="10.0.2" />
|
|
<PackageReference Include="Microsoft.Extensions.Logging.Abstractions" Version="10.0.2" />
|
|
<PackageReference Include="Microsoft.Extensions.Options" Version="10.0.2" />
|
|
</ItemGroup>
|
|
|
|
</Project>
|