security: gh security recs (#3368)

* change ALLOW_SIGNUP to default to false * add 1.4.0 tag for OIDC docs * new notes on security inline with security/policy review * safer transport for external requests * fix linter errors * docs: Tidy up wording/formatting * fix request errors * whoops * fix implementation with std lib * format * Remove check on netloc_parts. It only includes URL after any @ --------- Co-authored-by: boc-the-git <3479092+boc-the-git@users.noreply.github.com> Co-authored-by: Brendan <b.oconnell14@gmail.com>
2026-02-05 15:33:10 -05:00 · 2024-04-02 10:04:42 -05:00
parent 737a370874
commit 2a3463b746
11 changed files with 180 additions and 54 deletions
--- a/mealie/core/settings/settings.py
+++ b/mealie/core/settings/settings.py
@@ -47,7 +47,7 @@ class AppSettings(BaseSettings):

    GIT_COMMIT_HASH: str = "unknown"

-    ALLOW_SIGNUP: bool = True
+    ALLOW_SIGNUP: bool = False

    # ===============================================
    # Security Configuration