From 86e00337449df2dee0cc5463172938005311286e Mon Sep 17 00:00:00 2001 From: CodeShell <122738806+CodeShellDev@users.noreply.github.com> Date: Sun, 2 Nov 2025 13:07:25 +0100 Subject: [PATCH 01/10] update endpoints section --- .github/templates/README.template.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/templates/README.template.md b/.github/templates/README.template.md index c1a1cc54..c862fc6c 100644 --- a/.github/templates/README.template.md +++ b/.github/templates/README.template.md @@ -228,7 +228,7 @@ Since Secured Signal API is just a Proxy you can use all of the [Signal REST API These Endpoints are blocked by default due to Security Risks. > [!NOTE] -> Matching works by checking if the requested Endpoints starts with a Blocked or an Allowed Endpoint +> Matching uses glob-style patterns: `*` matches any sequence of characters, `?` matches a single character and `[abc]` matches one of the characters in the brackets You can modify endpoints by configuring `access.endpoints` in your config: From 784c9643c4ad59c061a4c7200f0fb16d30b63da1 Mon Sep 17 00:00:00 2001 From: CodeShell <122738806+CodeShellDev@users.noreply.github.com> Date: Sun, 2 Nov 2025 14:15:31 +0100 Subject: [PATCH 02/10] update config.yml --- docs/configuration/examples/config.yml | 8 +++++++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/docs/configuration/examples/config.yml b/docs/configuration/examples/config.yml index 3591048c..3405163f 100644 --- a/docs/configuration/examples/config.yml +++ b/docs/configuration/examples/config.yml @@ -25,5 +25,11 @@ settings: access: endpoints: - - !/v1/about + - "!/v1/about" - /v2/send + + fieldPolicies: + "@number": { + value: "+123400003", + action: block + } From a9f548d5537c58fbad273195dd91d56372673967 Mon Sep 17 00:00:00 2001 From: CodeShell <122738806+CodeShellDev@users.noreply.github.com> Date: Sun, 2 Nov 2025 14:16:09 +0100 Subject: [PATCH 03/10] update token.yml --- docs/configuration/examples/token.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/configuration/examples/token.yml b/docs/configuration/examples/token.yml index 27005cf9..f80e4f2e 100644 --- a/docs/configuration/examples/token.yml +++ b/docs/configuration/examples/token.yml @@ -7,4 +7,4 @@ overrides: access: endpoints: # Disable Sending - - !/v2/send + - "!/v2/send" From 32d0da0cd707bd337941d68c612334b51c992a0f Mon Sep 17 00:00:00 2001 From: CodeShell <122738806+CodeShellDev@users.noreply.github.com> Date: Sun, 2 Nov 2025 14:26:06 +0100 Subject: [PATCH 04/10] Update README.template.md --- .github/templates/README.template.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/templates/README.template.md b/.github/templates/README.template.md index c862fc6c..edfa9b81 100644 --- a/.github/templates/README.template.md +++ b/.github/templates/README.template.md @@ -220,15 +220,15 @@ Since Secured Signal API is just a Proxy you can use all of the [Signal REST API | Endpoint | | | :-------------------- | ------------------ | -| **/v1/about** | **/v1/unregister** | -| **/v1/configuration** | **/v1/qrcodelink** | +| **/v1/configuration** | **/v1/unregister** | | **/v1/devices** | **/v1/contacts** | | **/v1/register** | **/v1/accounts** | +| **/v1/qrcodelink** | | These Endpoints are blocked by default due to Security Risks. > [!NOTE] -> Matching uses glob-style patterns: `*` matches any sequence of characters, `?` matches a single character and `[abc]` matches one of the characters in the brackets +> Matching uses [glob-style patterns](https://www.gnu.org/software/bash/manual/html_node/Pattern-Matching.html): `*` matches any sequence of characters, `?` matches a single character and `[abc]` matches one of the characters in the brackets You can modify endpoints by configuring `access.endpoints` in your config: From 06698a72ed2b12d3ac23a925fa20f84890b79cdf Mon Sep 17 00:00:00 2001 From: CodeShell <122738806+CodeShellDev@users.noreply.github.com> Date: Sun, 2 Nov 2025 14:26:14 +0100 Subject: [PATCH 05/10] Update endpoints.md --- docs/configuration/endpoints.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/docs/configuration/endpoints.md b/docs/configuration/endpoints.md index d0c05493..21c7d529 100644 --- a/docs/configuration/endpoints.md +++ b/docs/configuration/endpoints.md @@ -13,15 +13,15 @@ but by default the following endpoints are **blocked**, because of Security Conc | Endpoint | | | :-------------------- | ------------------ | -| **/v1/about** | **/v1/unregister** | -| **/v1/configuration** | **/v1/qrcodelink** | +| **/v1/configuration** | **/v1/unregister** | | **/v1/devices** | **/v1/contacts** | | **/v1/register** | **/v1/accounts** | +| **/v1/qrcodelink** | | ## Customize > [!NOTE] -> Matching works by checking if the requested Endpoints starts with a Blocked or an Allowed Endpoint +> Matching uses [glob-like patterns](https://www.gnu.org/software/bash/manual/html_node/Pattern-Matching.html): `*` matches any sequence of characters, `?` matches a single character and `[abc]` matches one of the characters in the brackets You can modify endpoints by configuring `access.endpoints` in your config: From 8dd5bae80fce635244b5d367066a624465a02df5 Mon Sep 17 00:00:00 2001 From: CodeShell <122738806+CodeShellDev@users.noreply.github.com> Date: Sun, 2 Nov 2025 14:27:51 +0100 Subject: [PATCH 06/10] Update endpoints.md --- docs/configuration/endpoints.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/configuration/endpoints.md b/docs/configuration/endpoints.md index 21c7d529..43cc20fe 100644 --- a/docs/configuration/endpoints.md +++ b/docs/configuration/endpoints.md @@ -45,4 +45,4 @@ By default adding an endpoint explictly allows access to it, use `!` to block it | :------------- | :------------- | :--------: | --- | :---------------: | --- | | `/v2/send` | `unset` | **all** | 🛑 | **`/v2/send`** | ✅ | | `unset` | `!/v1/receive` | **all** | ✅ | **`/v1/receive`** | 🛑 | -| `/v2` | `!/v2/send` | **`/v2*`** | 🛑 | **`/v2/send`** | ✅ | +| `/v2*` | `!/v2/send` | **`/v2*`** | 🛑 | **`/v2/send`** | ✅ | From 5c1154abf15f15309e89f07ab0041ab4f759079c Mon Sep 17 00:00:00 2001 From: CodeShell <122738806+CodeShellDev@users.noreply.github.com> Date: Sun, 2 Nov 2025 14:28:32 +0100 Subject: [PATCH 07/10] Update README.template.md --- .github/templates/README.template.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/templates/README.template.md b/.github/templates/README.template.md index edfa9b81..204a3b7e 100644 --- a/.github/templates/README.template.md +++ b/.github/templates/README.template.md @@ -252,7 +252,7 @@ By default adding an endpoint explictly allows access to it, use `!` to block it | :------------- | :------------- | :--------: | --- | :---------------: | --- | | `/v2/send` | `unset` | **all** | 🛑 | **`/v2/send`** | ✅ | | `unset` | `!/v1/receive` | **all** | ✅ | **`/v1/receive`** | 🛑 | -| `/v2` | `!/v2/send` | **`/v2*`** | 🛑 | **`/v2/send`** | ✅ | +| `/v2*` | `!/v2/send` | **`/v2*`** | 🛑 | **`/v2/send`** | ✅ | ### Variables From c7680441d4a7af5ac03532e9584d26373d5bffa4 Mon Sep 17 00:00:00 2001 From: CodeShell <122738806+CodeShellDev@users.noreply.github.com> Date: Sun, 2 Nov 2025 14:28:57 +0100 Subject: [PATCH 08/10] Update endpoints.md --- docs/configuration/endpoints.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/configuration/endpoints.md b/docs/configuration/endpoints.md index 43cc20fe..d0ceefae 100644 --- a/docs/configuration/endpoints.md +++ b/docs/configuration/endpoints.md @@ -45,4 +45,4 @@ By default adding an endpoint explictly allows access to it, use `!` to block it | :------------- | :------------- | :--------: | --- | :---------------: | --- | | `/v2/send` | `unset` | **all** | 🛑 | **`/v2/send`** | ✅ | | `unset` | `!/v1/receive` | **all** | ✅ | **`/v1/receive`** | 🛑 | -| `/v2*` | `!/v2/send` | **`/v2*`** | 🛑 | **`/v2/send`** | ✅ | +| `/v2*` | `!/v2/send` | **`/v2*`** | 🛑 | **`/v2/send`** | ✅ | From 7a8abfea6fae9c86c74ac21068a7a1779c09ac3a Mon Sep 17 00:00:00 2001 From: CodeShell <122738806+CodeShellDev@users.noreply.github.com> Date: Sun, 2 Nov 2025 14:30:19 +0100 Subject: [PATCH 09/10] Update endpoints.md --- docs/configuration/endpoints.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/configuration/endpoints.md b/docs/configuration/endpoints.md index d0ceefae..02dcd63e 100644 --- a/docs/configuration/endpoints.md +++ b/docs/configuration/endpoints.md @@ -45,4 +45,4 @@ By default adding an endpoint explictly allows access to it, use `!` to block it | :------------- | :------------- | :--------: | --- | :---------------: | --- | | `/v2/send` | `unset` | **all** | 🛑 | **`/v2/send`** | ✅ | | `unset` | `!/v1/receive` | **all** | ✅ | **`/v1/receive`** | 🛑 | -| `/v2*` | `!/v2/send` | **`/v2*`** | 🛑 | **`/v2/send`** | ✅ | +| `!/v2*` | `/v2/send` | **`/v2*`** | 🛑 | **`/v2/send`** | ✅ | From 49544fb49266ccbdcf09b44771116733d971c7e1 Mon Sep 17 00:00:00 2001 From: CodeShell <122738806+CodeShellDev@users.noreply.github.com> Date: Sun, 2 Nov 2025 14:30:49 +0100 Subject: [PATCH 10/10] Update README.template.md --- .github/templates/README.template.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/templates/README.template.md b/.github/templates/README.template.md index 204a3b7e..66bcd9fa 100644 --- a/.github/templates/README.template.md +++ b/.github/templates/README.template.md @@ -252,7 +252,7 @@ By default adding an endpoint explictly allows access to it, use `!` to block it | :------------- | :------------- | :--------: | --- | :---------------: | --- | | `/v2/send` | `unset` | **all** | 🛑 | **`/v2/send`** | ✅ | | `unset` | `!/v1/receive` | **all** | ✅ | **`/v1/receive`** | 🛑 | -| `/v2*` | `!/v2/send` | **`/v2*`** | 🛑 | **`/v2/send`** | ✅ | +| `!/v2*` | `/v2/send` | **`/v2*`** | 🛑 | **`/v2/send`** | ✅ | ### Variables