Active
Argon2id Password Hashing
Memory-hard password hashing with per-user salts for stronger resistance against brute-force attacks.
Security architecture
Layered protection for BusterFlix accounts.
These are platform security controls and planned security upgrades, not vulnerability-free guarantees or third-party certification claims.
Active
Server-Side RBAC
Deny-by-default owner/admin checks protect the admin page and every admin API route.
Active
Secure Sessions + CSRF
HttpOnly cookies, D1-backed session validation, logout revocation, and CSRF checks for admin changes.
Active
Rate Limits + Lockout
Login, register, admin mutations, favorites, progress, stream, and transcode requests are throttled in the first version.
Active
Safe Media Paths
Server, TorBox, HLS, poster, and processed paths are resolved under allowed roots with traversal and dotfile blocking.
Active
CORS + Security Headers
Production origins are restricted and responses include CSP, frame blocking, no-referrer, nosniff, and permissions policy headers.
Next
Curve25519 Client Keys
Planned client-side asymmetric key generation for encrypted private user data workflows.
Next
XSalsa20-Poly1305
Planned authenticated encryption layer for sensitive client-side data blobs once key management is added.