]> git.ipfire.org Git - ipfire.org.git/commitdiff
projects / ipfire.org.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: e4efb9c)
Add security.txt
authorMichael Tremer <michael.tremer@ipfire.org>
Thu, 25 Sep 2025 16:23:20 +0000 (16:23 +0000)
committerMichael Tremer <michael.tremer@ipfire.org>
Thu, 25 Sep 2025 16:23:20 +0000 (16:23 +0000)
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Makefile.am patch | blob | blame | history
src/static/security.txt [new file with mode: 0644] patch | blob
src/web/__init__.py patch | blob | blame | history

diff --git a/Makefile.am b/Makefile.am
index 1b1415cce2f28dd8c686ee82339b5bfbdadf60e1..b94d2b96d4fea7e0f02109f909f8289395bd2a66 100644 (file)
--- a/Makefile.am
+++ b/Makefile.am
@@ -393,6 +393,7 @@ CLEANFILES += \
 static_DATA = \
        src/static/favicon.ico \
        src/static/robots.txt \
+       src/static/security.txt \
        src/sass/listing.css \
        src/sass/public-inbox.css \
        src/sass/main.css
diff --git a/src/static/security.txt b/src/static/security.txt
new file mode 100644 (file)
index 0000000..3d0f144
--- /dev/null
+++ b/src/static/security.txt
@@ -0,0 +1,4 @@
+Contact: mailto:security@ipfire.org
+Expires: 2035-12-31T23:59:00.000Z
+Preferred-Languages: en
+Policy: https://www.ipfire.org/docs/devel/security-policy
diff --git a/src/web/__init__.py b/src/web/__init__.py
index 7fd663aa36e975aab7ac49ae4d8dc9c3fed4a50a..b3d45f71f3e451de2f3e94ce3fa03706316cf7e9 100644 (file)
--- a/src/web/__init__.py
+++ b/src/web/__init__.py
@@ -242,6 +242,9 @@ class Application(tornado.web.Application):
                        (r"/api/check/email", auth.APICheckEmail),
                        (r"/api/check/uid", auth.APICheckUID),
 
+                       # security.txt
+                       (r"/\.well\-known/security\.txt", tornado.web.RedirectHandler, { "url" : "/static/security.txt" }),
+
                        # Handle old pages that have moved elsewhere
                        (r"/blog/authors/(\w+)", tornado.web.RedirectHandler, { "url" : "/users/{0}" }),
                        (r"/donation", tornado.web.RedirectHandler, { "url" : "/donate" }),
The website of ipfire.org.