Mike/Kordant
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
91 Commits 1 Branch 0 Tags
9f65ebce5dedfe3c768c7f784f62b05847205b1c
Commit Graph

6 Commits

Author SHA1 Message Date
Michael Freno
9f65ebce5d FRE-5398: Fix invoice endpoint customer IDOR (M-3) 
- Make verifyCustomerOwnership public in BillingService
- Add ownership verification before fetching invoice history
- Returns 403 if customerId does not belong to authenticated user

Co-Authored-By: Paperclip <noreply@paperclip.ing>
 2026-05-16 09:57:57 -04:00
Michael Freno
7c2b585c16 FRE-5401: Migrate webhook idempotency to distributed Redis store 
Replace in-memory Map<string, number> with Redis-based idempotency
using setIfNotExists (NX) for distributed multi-instance deployments.
Removes cleanupOldEvents (no longer needed with Redis TTL).

Co-Authored-By: Paperclip <noreply@paperclip.ing>
 2026-05-15 20:27:12 -04:00
Michael Freno
cba5390309 FRE-5348: Fix P1 billing issues 
- Add null check for subscription items in updateSubscription
- Implement webhook handlers with Prisma DB persistence
- cancelSubscription already correctly passes cancel_at_period_end

All P1 issues validated and fixed. Ready for Security Review.

Co-Authored-By: Paperclip <noreply@paperclip.ing>
 2026-05-15 14:18:46 -04:00
Michael Freno
3663e5b80a FRE-4517, FRE-4499: Complete SpamShield implementation and billing updates 
- SpamFeedback table migration with timestamp index
- Real-time interception engine completion
- Billing service enhancements
- Classifier and rule engine updates

Co-Authored-By: Paperclip <noreply@paperclip.ing>
 2026-05-01 19:53:19 -04:00
Michael Freno
19c5a951fe billing 2026-04-30 11:07:38 -04:00
Michael Freno
9fb5379b7a Add tier-based scan scheduler and webhook triggers (FRE-4498) 
- ScanScheduler: tier-based scheduling (BASIC=24h, PLUS=6h, PREMIUM=1h)
- WebhookHandler: HMAC-verified webhook ingestion with SCAN_TRIGGER support
- API routes: /scheduler and /webhooks endpoints under /api/v1/darkwatch
- Jobs: scheduled scan checker + webhook retry processor via BullMQ
- Schema: ScanSchedule, WebhookEvent models; ScanJob.scheduledBy field
- Types: ScheduleStatus, WebhookEventType, WebhookTriggerInput
- Tests: scheduler lifecycle + webhook signature/processing tests

Co-Authored-By: Paperclip <noreply@paperclip.ing>
 2026-04-30 10:57:56 -04:00