issues Search Results · language:Dune language:JavaScript language:JavaScript language:JavaScript language:CSS
Filter by
20.6M results
What problem does this solve?
The JWT signing key falls back to a known, hardcoded default and the app starts anyway. In backend/auth.py:
SECRET_KEY = os.environ.get( SECRET_KEY , grimoire-dev-secret-change-in-production ...
enhancement
python
security
hunter-read
What problem does this solve?
Authentication issues a single, long-lived, non-revocable token. backend/auth.py sets TOKEN_EXPIRE_DAYS = 30 and
create_token mints a JWT valid for 30 days; decode_token ...
enhancement
python
security
What problem does this solve?
Image and file URLs authenticate via the JWT in a query parameter. backend/auth.py accepts the token either from the
Authorization: Bearer header or from a ?token= query ...
enhancement
python
security
What problem does this solve?
The production Docker image has two avoidable issues (see Dockerfile):
1. No HEALTHCHECK. The container exposes the app on port 9481 but defines no HEALTHCHECK, so orchestrators ...
enhancement
What problem does this solve?
PDF page images are cached aggressively (Cache-Control: max-age=31536000, immutable, per CLAUDE.md), but other
uploaded/served images are not. For example, campaign banners ...
enhancement
python
What problem does this solve?
The OIDC login flow keeps two pieces of critical state in process memory, which makes the app effectively
single-replica:
- The per-flow OAuth state store — backend/routers/oidc/_helpers.py ...
enhancement
python
What problem does this solve?
Two modules have grown into god-modules that are hard to navigate and review, and they push against the file-size
guidance in CLAUDE.md ( Prefer smaller, focused files… split ...
enhancement
tech-debt
What problem does this solve?
Schema changes are currently applied by a hand-rolled, imperative migration routine in backend/models/db.py (~212 LOC) —
init_db plus runtime replay these ALTER TABLEs if ...
enhancement
python
tech-debt
What problem does this solve?
The data model already supports pending campaign invitations: CampaignMember.status defaults to invited
(backend/models/campaigns.py). But there s no in-app surface for a ...
enhancement
What problem does this solve?
Campaigns already carry scheduling data — backend/routers/campaigns/schedule.py manages per-session dates and member
availability, and the CampaignSession/availability models ...
enhancement
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.