first commit

This commit is contained in:
brusnitsyn
2026-06-24 17:20:43 +09:00
commit 43499acf1c
165 changed files with 25929 additions and 0 deletions

45
bootstrap/app.php Normal file
View File

@@ -0,0 +1,45 @@
<?php
use App\Http\Middleware\AuditLog;
use App\Http\Middleware\EnsureMfaIsVerified;
use App\Http\Middleware\EnsurePasswordIsNotExpired;
use App\Http\Middleware\ForceHttps;
use App\Http\Middleware\HandleInertiaRequests;
use App\Http\Middleware\IpWhitelist;
use App\Http\Middleware\SecurityHeaders;
use Illuminate\Foundation\Application;
use Illuminate\Foundation\Configuration\Exceptions;
use Illuminate\Foundation\Configuration\Middleware;
use Illuminate\Http\Middleware\AddLinkHeadersForPreloadedAssets;
use Illuminate\Http\Request;
return Application::configure(basePath: dirname(__DIR__))
->withRouting(
web: __DIR__.'/../routes/web.php',
commands: __DIR__.'/../routes/console.php',
health: '/up',
)
->withMiddleware(function (Middleware $middleware): void {
// Глобальные меры защиты: принудительный HTTPS (ИАФ.5) и заголовки
// безопасности (ЗИС) применяются ко всем запросам.
$middleware->append(ForceHttps::class);
$middleware->append(SecurityHeaders::class);
$middleware->web(append: [
HandleInertiaRequests::class,
AddLinkHeadersForPreloadedAssets::class,
]);
// Псевдонимы для назначения мер на отдельные маршруты/группы.
$middleware->alias([
'mfa' => EnsureMfaIsVerified::class,
'password.fresh' => EnsurePasswordIsNotExpired::class,
'audit' => AuditLog::class,
'ip.whitelist' => IpWhitelist::class,
]);
})
->withExceptions(function (Exceptions $exceptions): void {
$exceptions->shouldRenderJsonWhen(
fn (Request $request) => $request->is('api/*'),
);
})->create();

2
bootstrap/cache/.gitignore vendored Normal file
View File

@@ -0,0 +1,2 @@
*
!.gitignore

9
bootstrap/providers.php Normal file
View File

@@ -0,0 +1,9 @@
<?php
use App\Providers\AppServiceProvider;
use App\Providers\SecurityServiceProvider;
return [
AppServiceProvider::class,
SecurityServiceProvider::class,
];