nanodrop/.env.example at 6d8fb9105d51e6cd6a8d93f60101ee5e4f35821f - nanodrop - birb co.

brendan/nanodrop

Files

Brendan Chen 6d8fb9105d Code review fixes, Docker, and deployment config

- Fix tsconfig: switch to ESNext/Bundler module resolution (tsx compatible)
- Sanitize file extensions against path traversal (^.[a-zA-Z0-9]+$ only)
- Sanitize Content-Disposition filename to prevent header injection
- Extract tokenCookieOptions helper to eliminate duplication across auth handlers
- Remove unused baseUrl param from fileListPage
- Add Dockerfile (multi-stage build with alpine + native tools for bcrypt)
- Add docker-compose.yml with named volume for data persistence
- Add .env.example with all environment variables documented

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-03-03 15:58:39 -08:00

12 lines

257 B

Plaintext

Raw Blame History

 PORT=3000
 HOST=0.0.0.0
 JWT_SECRET=change-me-to-a-long-random-secret
 JWT_EXPIRY=7d
 DB_PATH=./data/nanodrop.db
 UPLOAD_DIR=./data/uploads
 LOG_FILE=./data/nanodrop.log
 MAX_FILE_SIZE=104857600
 BASE_URL=http://localhost:3000
 COOKIE_SECURE=false
 TRUST_PROXY=false