Merge pull request #85 from LaGodxy/feature/input-validation-security-fees-stellar

Feature/input validation security fees stellar

Author: jobbykings

.env.example

@@ -2,3 +2,28 @@
 PORT=3000
 NODE_ENV=development
 
+# CORS Configuration
+# Comma-separated list of allowed origins for production
+CORS_ALLOWED_ORIGINS=https://app.currentdao.com,https://www.currentdao.com
+
+# Development-specific CORS origins (optional)
+CORS_DEV_ORIGINS=http://localhost:4200,http://localhost:8080
+
+# Staging-specific CORS origins (optional)
+CORS_STAGING_ORIGINS=https://staging.currentdao.com
+
+# Security Configuration
+# API rate limiting (requests per minute)
+RATE_LIMIT_TTL=60
+RATE_LIMIT_MAX=100
+
+# Session configuration
+SESSION_SECRET=your-super-secret-session-key-change-in-production
+
+# Helmet security (automatically configured based on NODE_ENV)
+# HSTS max-age in seconds (default: 31536000 for production)
+HSTS_MAX_AGE=31536000
+
+# Content Security Policy report URI
+CSP_REPORT_URI=/api/csp-report
+

src/app.module.ts

@@ -1,5 +1,5 @@
 import { AssetModule } from './assets/asset.module';
-import { Module } from '@nestjs/common';
+import { Module, NestMiddleware, MiddlewareConsumer, RequestMethod } from '@nestjs/common';
 import { ConfigModule, ConfigType } from '@nestjs/config';
 import { TypeOrmModule } from '@nestjs/typeorm';
 import { ScheduleModule } from '@nestjs/schedule';
@@ -8,6 +8,9 @@ import stellarConfig from './config/stellar.config';
 import { AppController } from './app.controller';
 import { HealthController } from './health.controller';
 import { AppService } from './app.service';
+import { SecurityMiddleware } from './middleware/security.middleware';
+import { helmetMiddleware, validateSecurityConfig } from './config/security.config';
+import { corsConfig, validateCorsConfig } from './config/cors.config';
 import { MarketForecastingModule } from './forecasting/market-forecasting.module';
 import { RiskManagementModule } from './risk/risk-management.module';
 import { CrossBorderModule } from './cross-border/cross-border.module';
@@ -21,6 +24,8 @@ import { MonitoringModule } from './monitoring/monitoring.module';
 import { SentimentModule } from './sentiment/sentiment.module';
 import { ResponseInterceptor } from './common/interceptors/response.interceptor';
 import { HttpExceptionFilter } from './common/filters/http-exception.filter';
+import { ValidationExceptionFilter } from './common/filters/validation.filter';
+import { ValidationPipe } from './common/pipes/validation.pipe';
 import { FraudDetectionModule } from './fraud/fraud-detection.module';
 import { PredictiveBalancingModule } from './balancing/predictive-balancing.module';
 import { SyncModule } from './sync/sync.module';