username/flaskpaste
1
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

add tiered auto-expiry based on auth level
All checks were successful
CI / Lint & Format (push) Successful in 17s
Details
CI / Security Scan (push) Successful in 22s
Details
CI / Tests (push) Successful in 1m5s
Details

Browse Source
This commit is contained in:
Username
2025-12-21 21:55:30 +01:00
parent 3fe631f6b9
commit e8a99d5bdd
4 changed files with 68 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
app/config.py
View File

@@ -22,10 +22,17 @@ class Config:
MAX_PASTE_SIZE_AUTH = int(os.environ.get("FLASKPASTE_MAX_AUTH", 50 * 1024 * 1024)) # 50MiB
MAX_CONTENT_LENGTH = MAX_PASTE_SIZE_AUTH # Flask request limit
# Paste expiry (default 5 days)
PASTE_EXPIRY_SECONDS = int(os.environ.get("FLASKPASTE_EXPIRY", 5 * 24 * 60 * 60))
# Maximum custom expiry (default 30 days, 0 = use default expiry as max)
MAX_EXPIRY_SECONDS = int(os.environ.get("FLASKPASTE_MAX_EXPIRY", 30 * 24 * 60 * 60))
# Paste expiry (tiered by authentication level)
# Anonymous users: shortest expiry (default 1 day)
EXPIRY_ANON = int(os.environ.get("FLASKPASTE_EXPIRY_ANON", 1 * 24 * 60 * 60))
# Untrusted certs (authenticated but not registered): medium expiry (default 7 days)
EXPIRY_UNTRUSTED = int(os.environ.get("FLASKPASTE_EXPIRY_UNTRUSTED", 7 * 24 * 60 * 60))
# Trusted certs (registered in PKI): longest expiry (default 30 days, 0 = no expiry)
EXPIRY_TRUSTED = int(os.environ.get("FLASKPASTE_EXPIRY_TRUSTED", 30 * 24 * 60 * 60))
# Maximum custom expiry (default 90 days, 0 = unlimited for trusted)
MAX_EXPIRY_SECONDS = int(os.environ.get("FLASKPASTE_MAX_EXPIRY", 90 * 24 * 60 * 60))
# Legacy alias for backwards compatibility
PASTE_EXPIRY_SECONDS = EXPIRY_ANON
# Content deduplication / abuse prevention
# Throttle repeated submissions of identical content