Josh Patra 76f633afce Add security blocklist for dangerous admin endpoints ...

- Block system restart/shutdown endpoints
- Block system configuration changes
- Block plugin management (install/uninstall/configure)
- Block scheduled task management
- Block server startup/setup endpoints
- Block user creation endpoint
- Block library management (refresh, virtual folders)
- Block server logs and activity log access
- Log blocked attempts with IP address for security monitoring
- Returns 403 Forbidden with descriptive error message

This maintains client compatibility via catch-all proxy while preventing
unauthorized access to administrative functions.

2026-02-01 11:48:45 -05:00

..

JellyfinController.cs

Add security blocklist for dangerous admin endpoints

2026-02-01 11:48:45 -05:00

SubSonicController.cs

Fix: Update last access time for cached files to enable proper cleanup

2026-01-30 00:41:17 -05:00