C3MA/DD3-LoRa-Bridge-MultiSender
6
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
0e12b406de4c8bcc4f682d98f46957933872dd06
DD3-LoRa-Bridge-MultiSender/include/html_util.h
acidburns 0e12b406de Harden web UI auth, input handling, and SD path validation 
- Add optional Basic Auth with NVS-backed credentials and STA/AP flags; protect status, wifi, history, and download routes

- Stop pre-filling WiFi/MQTT/Web UI password fields; keep stored secrets on blank and add clear-password checkboxes

- Add HTML escaping + URL encoding helpers and apply to user-controlled strings; add unit test

- Harden /sd/download path validation (prefix, length, dotdot, slashes) and log rejections

- Enforce protocol version in LoRa receive and release GPIO14 before SD init

- Update README security, SD, and GPIO sharing notes
2026-02-02 21:08:05 +01:00

7 lines
127 B
C
Raw Blame History

#pragma once
#include <Arduino.h>
String html_escape(const String &input);
String url_encode_component(const String &input);
Reference in New Issue View Git Blame Copy Permalink