-
v0.0.2 - Secure File Storage with Hybrid Encryption, JWT Auth, and HDFS Integration.
notkshitij released this
2025-07-04 01:17:31 +05:30 | 13 commits to main since this releaseThis release introduces a fully functional and hardened secure file storage backend with the following major features:
- Hybrid RSA-AES encryption per file with user-specific keypairs
- Strong password policies with breach check via haveibeenpwned
- JWT-based authentication with refresh token support and blacklist on logout
- Brute-force login protection using rate limiting
- HTTPS enforced with HTTP to HTTPS redirection
- Encrypted file upload/download to/from HDFS with metadata stored in DB
- Audit logging and structured DTOs with validation
- Token refresh endpoint and secure session handling
- Automatic user directory creation in HDFS upon registration
- Improved Spring Security, cleaned config, and modular service structure
Tested file encryption and upload operations using curl and hexdump. Encryption works.
WORKING AND TESTED:
- LOGIN
- REGISTER
- FILE UPLOAD
- FILE DOWNLOAD
Downloads