KumiSystems/Chatwoot
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

chore: Security Improvements to the API (#2893)

Browse source 
- Devise auth tokens are reset on password update
- Avatar attachment file type is limited to jpeg,gif and png
- Avatar attachment file size is limited to 15 mb
- Widget Message attachments are limited to types ['image/png', 'image/jpeg', 'image/gif', 'image/bmp', 'image/tiff', 'application/pdf', 'audio/mpeg', 'video/mp4', 'audio/ogg', 'text/csv']
- Widget Message attachments are limited to 40Mb size limit.
This commit is contained in:
Sojan Jose 2021-09-01 15:08:05 +05:30 committed by GitHub
parent 06d8916341
commit 6fdd4a2996
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
9 changed files with 60 additions and 23 deletions
Download patch file Download diff file Expand all files Collapse all files

3
app/javascript/dashboard/components/widgets/forms/AvatarUploader.vue
View file

@ -20,12 +20,13 @@
id="file"
ref="file"
type="file"
accept="image/*"
accept="image/png, image/jpeg, image/gif"
@change="handleImageUpload"
/>
<slot></slot>
</label>
</div>
</template>
<script>