ADD multiline support for desc env var for terms and other links

CHANGE format for deletion token display
ADD information about wiki
2025-10-26 11:39:46 +01:00 · 2025-10-26 11:23:21 +01:00 · 2025-10-20 16:27:23 +02:00 · 2025-10-16 18:19:23 +02:00 · 2025-10-16 12:32:06 +02:00 · 2025-10-16 01:59:10 +02:00
2 changed files with 417 additions and 59 deletions
--- a/README.md
+++ b/README.md
@ -20,6 +20,8 @@
 - save and share content via CLI
 - up- and download in CLI possible
 - rate-limits
 - optional auth token for paste creation
 - logging
 **Ideas**:
 - integrated retention/purge function
@ -56,14 +58,19 @@ ipconfig | Invoke-RestMethod -Uri "https://linedump.com/" -Method Post -Body { $
    █ Download:
-curl https://linedump.com/{path}                                    # print to stdout
+curl https://linedump.com/{paste_id}                                    # print to stdout
-curl -o filename.txt https://linedump.com/{path}                    # save to file
+curl -o filename.txt https://linedump.com/{paste_id}                    # save to file
-wget -O- https://linedump.com/{path}                                # print to stdout
+wget -O- https://linedump.com/{paste_id}                                # print to stdout
-wget -O filename.txt https://linedump.com/{path}                    # save to file
+wget -O filename.txt https://linedump.com/{paste_id}                    # save to file
-Invoke-RestMethod -Uri "https://linedump.com/{path}"                                   # print to stdout
+Invoke-RestMethod -Uri "https://linedump.com/{paste_id}"                                   # print to stdout
-Invoke-RestMethod -Uri "https://linedump.com/{path}" -OutFile "filename.txt"           # save to file
+Invoke-RestMethod -Uri "https://linedump.com/{paste_id}" -OutFile "filename.txt"           # save to file
    █ Delete:
 curl -X POST "https://linedump.com/{paste_id}?token={deletion_token}"  # delete paste
@ -87,7 +94,25 @@ ip -br a   | openssl enc -aes-256-cbc -pbkdf2 -salt -pass pass:yourkey -base64
    █ Download:
-curl -s https://linedump.com/{path}   | base64 -d   | openssl enc -d -aes-256-cbc -pbkdf2 -pass pass:yourkey
+curl -s https://linedump.com/{paste_id}   | base64 -d   | openssl enc -d -aes-256-cbc -pbkdf2 -pass pass:yourkey
 ██ Authentication Examples ██
 If the instance has authentication enabled, include Bearer token:
    █ curl:
 curl -H "Authorization: Bearer YOUR_TOKEN" -X POST -d "Cheers" https://linedump.com/
    █ wget:
 wget --header="Authorization: Bearer YOUR_TOKEN" --post-data="Cheers" -O- https://linedump.com/
    █ Powershell:
 Invoke-RestMethod -Uri "https://linedump.com/" -Headers @{"Authorization"="Bearer YOUR_TOKEN"} -Method Post -Body "Cheers"
@ -110,17 +135,20 @@ curl -s https://linedump.com/{path}   | base64 -d   | openssl enc -d -aes-256-cb
    curl -X POST --data-binary @- https://linedump.com
 ```
 [For more examples check out the Wiki.](https://git.uphillsecurity.com/cf7/linedump/wiki/Usage)
 ---
 ## Installation
-**Use with reverse-proxy and HTTPS!**
+> [!IMPORTANT]
 > **Production Deployment:** Use a reverse-proxy (nginx, caddy) with TLS/HTTPS! Rate-limiting and logging features require the `X-Real-IP` header from a reverse proxy to function correctly. Less critical for local or trusted environments.
 ### Docker
 **Simple / Testing**
-`docker run -d -p 127.0.0.1:8000:8000 -v /path/to/upload:/app/upload git.uphillsecurity.com/cf7/linedump:latest`
+`docker run -d -p 127.0.0.1:8000:8000 -v /path/to/uploads:/app/uploads git.uphillsecurity.com/cf7/linedump:latest`
 Open `http://127.0.0.1:8000`
@ -144,10 +172,15 @@ podman run --replace -d --restart=unless-stopped \
 | Variable | Description | Default | Required |
 |----------|-------------|---------|----------|
 | `BASEURL` | Base URL used in the application responses and examples | `http://127.0.0.1:8000` | No |
-| `DESCRIPTION` | Application description displayed in the root endpoint | `CLI-only pastebin powered by linedump.com` | No |
+| `DESCRIPTION` | Application description displayed in the root endpoint (supports `\n` for multiline) | `CLI-only pastebin powered by linedump.com\nOpen Source: https://git.uphillsecurity.com/cf7/linedump` | No |
 | `MAX_FILE_SIZE_MB` | Maximum file size limit in megabytes | `50` | No |
 | `RATE_LIMIT` | Rate limit for uploads (format: "requests/timeframe") | `50/hour` | No |
 | `URL_PATH_LENGTH` | Length of generated URL paths (number of characters) | `6` | No |
 | `UPLOAD_TOKENS` | Comma-separated list of Bearer tokens for upload authentication (if set, uploads require valid token) | _(disabled)_ | No |
 | `LOGGING_ENABLED` | Enable structured JSON logging to file and stdout | `false` | No |
 | `LOG_LEVEL` | Logging level (INFO, WARNING, ERROR) | `INFO` | No |
 Create a secure token with: `openssl rand -base64 32`.
 ---
@ -161,6 +194,7 @@ For security concerns or reports, please contact via `hello a t uphillsecurity d
 - [Github Mirror available](https://github.com/CaffeineFueled1/linedump)
 - [Rate Limit Testing Script](https://git.uphillsecurity.com/cf7/Snippets/wiki/bash-linedump-ratelimit-test.-)
 - [Linedumpe Wiki](https://git.uphillsecurity.com/cf7/linedump/wiki/?action=_pages)
 ---
--- a/main.py
+++ b/main.py
@ -10,20 +10,91 @@ import os
 from pathlib import Path
 import hashlib
 from typing import Optional
 import json
 from datetime import datetime
 import sys
 BASEURL = os.getenv('BASEURL', 'http://127.0.0.1:8000')
-DESCRIPTION = os.getenv('DESCRIPTION', 'CLI-only pastebin powered by linedump.com')
+DESCRIPTION = os.getenv('DESCRIPTION', 'CLI-only pastebin powered by linedump.com\nOpen Source: https://git.uphillsecurity.com/cf7/linedump').replace('\\n', '\n')
 MAX_FILE_SIZE_MB = int(os.getenv('MAX_FILE_SIZE_MB', '50'))
 RATE_LIMIT = os.getenv('RATE_LIMIT', '50/hour')
 URL_PATH_LENGTH = int(os.getenv('URL_PATH_LENGTH', '6'))
 UPLOAD_TOKENS = [t.strip() for t in os.getenv('UPLOAD_TOKENS', '').split(',') if t.strip()] if os.getenv('UPLOAD_TOKENS') else []
 LOGGING_ENABLED = os.getenv('LOGGING_ENABLED', 'false').lower() in ['true', '1', 'yes']
 LOG_LEVEL = os.getenv('LOG_LEVEL', 'INFO').upper()
 LOG_FILE = 'logs/linedump.log'
-limiter = Limiter(key_func=get_remote_address)
+# Create logs directory and log file if logging is enabled
 if LOGGING_ENABLED:
    Path('logs').mkdir(exist_ok=True)
    Path(LOG_FILE).touch(exist_ok=True)
 def log(level: str, event: str, **kwargs):
    """Simple structured logging function"""
    # Skip if logging is disabled
    if not LOGGING_ENABLED:
        return
    # Skip logs based on level
    if LOG_LEVEL == 'ERROR' and level in ['INFO', 'WARNING']:
        return
    if LOG_LEVEL == 'WARNING' and level == 'INFO':
        return
    log_entry = {
        "timestamp": datetime.utcnow().isoformat() + "Z",
        "level": level,
        "event": event,
        **kwargs
    }
    log_line = json.dumps(log_entry)
    # Write to file
    try:
        with open(LOG_FILE, 'a') as f:
            f.write(log_line + '\n')
    except:
        pass  # Fail silently if logging fails
    # Write to stdout
    print(log_line, file=sys.stdout)
 def get_real_ip(request: Request) -> str:
    """Get real client IP for rate limiting and logging (supports reverse proxy)"""
    # Check X-Real-IP header first (set by reverse proxy)
    x_real_ip = request.headers.get("X-Real-IP")
    if x_real_ip:
        return x_real_ip.strip()
    # Fallback to direct connection IP
    return request.client.host
 limiter = Limiter(key_func=get_real_ip)
 app = FastAPI(title="linedump", version="1.0.0")
 app.state.limiter = limiter
 app.add_exception_handler(RateLimitExceeded, _rate_limit_exceeded_handler)
@app.exception_handler(RateLimitExceeded)
 async def log_rate_limit(request: Request, exc: RateLimitExceeded):
    """Custom handler to log rate limit violations"""
    log("WARNING", "rate_limit_exceeded",
        client_ip=get_real_ip(request),
        user_agent=request.headers.get("User-Agent", "unknown"),
        endpoint=request.url.path)
    return await _rate_limit_exceeded_handler(request, exc)
 # Log startup
 log("INFO", "application_started",
    base_url=BASEURL,
    max_file_size_mb=MAX_FILE_SIZE_MB,
    auth_enabled=bool(UPLOAD_TOKENS))
 UPLOAD_DIR = Path("uploads")
 UPLOAD_DIR.mkdir(exist_ok=True)
@ -35,11 +106,126 @@ def generate_random_path(length: int = None) -> str:
    alphabet = string.ascii_letters + string.digits
    return ''.join(secrets.choice(alphabet) for _ in range(length))
-def get_client_ip(request: Request) -> str:
+
-    x_real_ip = request.headers.get("X-Real-IP")
+def generate_deletion_token() -> str:
-    if x_real_ip:
+    """Generate a secure deletion token"""
-        return x_real_ip.strip()
+    return secrets.token_urlsafe(32)
-    return request.client.host
+
 def validate_paste_id(paste_id: str) -> bool:
    """Validate paste ID to prevent path traversal and other attacks"""
    # Must be alphanumeric only
    if not paste_id.isalnum():
        return False
    # Reasonable length check (prevent extremely long IDs)
    if len(paste_id) > 64:
        return False
    # Must not be empty
    if len(paste_id) == 0:
        return False
    return True
 def save_metadata(paste_id: str, deletion_token: str, client_ip: str) -> None:
    """Save paste metadata to JSON file"""
    # Validate paste_id before file operations
    if not validate_paste_id(paste_id):
        raise ValueError("Invalid paste ID")
    meta_path = UPLOAD_DIR / f"{paste_id}.meta"
    # Ensure resolved path is within UPLOAD_DIR (prevent path traversal)
    if not str(meta_path.resolve()).startswith(str(UPLOAD_DIR.resolve())):
        raise ValueError("Invalid paste ID: path traversal detected")
    metadata = {
        "deletion_token": deletion_token,
        "created_at": datetime.utcnow().isoformat() + "Z",
        "client_ip": client_ip
    }
    with open(meta_path, 'w') as f:
        json.dump(metadata, f)
 def load_metadata(paste_id: str) -> Optional[dict]:
    """Load paste metadata from JSON file"""
    # Validate paste_id before file operations
    if not validate_paste_id(paste_id):
        return None
    meta_path = UPLOAD_DIR / f"{paste_id}.meta"
    # Ensure resolved path is within UPLOAD_DIR (prevent path traversal)
    if not str(meta_path.resolve()).startswith(str(UPLOAD_DIR.resolve())):
        return None
    if not meta_path.exists():
        return None
    try:
        with open(meta_path, 'r') as f:
            return json.load(f)
    except:
        return None
 def delete_paste(paste_id: str) -> bool:
    """Delete paste and its metadata"""
    # Validate paste_id before file operations
    if not validate_paste_id(paste_id):
        return False
    paste_path = UPLOAD_DIR / paste_id
    meta_path = UPLOAD_DIR / f"{paste_id}.meta"
    # Ensure resolved paths are within UPLOAD_DIR (prevent path traversal)
    if not str(paste_path.resolve()).startswith(str(UPLOAD_DIR.resolve())):
        return False
    if not str(meta_path.resolve()).startswith(str(UPLOAD_DIR.resolve())):
        return False
    deleted = False
    if paste_path.exists():
        paste_path.unlink()
        deleted = True
    if meta_path.exists():
        meta_path.unlink()
    return deleted
 def validate_upload_token(request: Request) -> bool:
    """Validate upload token if authentication is enabled"""
    if not UPLOAD_TOKENS:
        # No tokens configured, authentication is disabled
        return True
    auth = request.headers.get("Authorization", "")
    if not auth.startswith("Bearer "):
        log("WARNING", "auth_failed",
            client_ip=get_real_ip(request),
            user_agent=request.headers.get("User-Agent", "unknown"),
            reason="missing_bearer")
        raise HTTPException(
            status_code=401,
            detail="Unauthorized",
            headers={"WWW-Authenticate": "Bearer"}
        )
    token = auth[7:]  # Remove "Bearer " prefix
    # Use constant-time comparison to prevent timing attacks
    if not any(secrets.compare_digest(token, valid_token) for valid_token in UPLOAD_TOKENS):
        log("WARNING", "auth_failed",
            client_ip=get_real_ip(request),
            user_agent=request.headers.get("User-Agent", "unknown"),
            reason="invalid_token")
        raise HTTPException(
            status_code=401,
            detail="Unauthorized",
            headers={"WWW-Authenticate": "Bearer"}
        )
    return True
 def validate_content(content: str) -> bool:
@ -60,51 +246,184 @@ def validate_content(content: str) -> bool:
@app.post("/", response_class=PlainTextResponse)
@limiter.limit(RATE_LIMIT)
-async def upload_text(request: Request):
+async def upload_text(request: Request, authorized: bool = Depends(validate_upload_token)):
-    
+
    client_ip = get_real_ip(request)
    user_agent = request.headers.get("User-Agent", "unknown")
    body = await request.body()
    content = body.decode('utf-8', errors='ignore')
-    
+
    if not validate_content(content):
        log("WARNING", "upload_failed",
            client_ip=client_ip,
            user_agent=user_agent,
            reason="invalid_content",
            size_bytes=len(content))
        raise HTTPException(status_code=400, detail="Invalid content")
-    
+
    if not content.strip():
        log("WARNING", "upload_failed",
            client_ip=client_ip,
            user_agent=user_agent,
            reason="empty_content")
        raise HTTPException(status_code=400, detail="Empty content")
-    
+
    random_path = generate_random_path()
    while (UPLOAD_DIR / random_path).exists():
        random_path = generate_random_path()
-    
+
    file_path = UPLOAD_DIR / random_path
-    
+
    try:
        # Generate deletion token
        deletion_token = generate_deletion_token()
        # Save paste content
        with open(file_path, 'w', encoding='utf-8') as f:
            f.write(content)
-        return f"{BASEURL}/{random_path}\n"
+        # Save metadata with deletion token
-    
+        save_metadata(random_path, deletion_token, client_ip)
        log("INFO", "paste_created",
            paste_id=random_path,
            client_ip=client_ip,
            user_agent=user_agent,
            size_bytes=len(content))
        # Return URL and deletion token
        return f"{BASEURL}/{random_path}\nDelete with HTTP POST:\n{BASEURL}/{random_path}?token={deletion_token}\n"
    except Exception as e:
        log("ERROR", "upload_failed",
            paste_id=random_path,
            client_ip=client_ip,
            user_agent=user_agent,
            error=str(e))
        raise HTTPException(status_code=500, detail="Failed to save file")
-@app.get("/{file_path}", response_class=PlainTextResponse)
+@app.get("/{paste_id}", response_class=PlainTextResponse)
-async def get_file(file_path: str):
+async def get_file(paste_id: str, request: Request, token: Optional[str] = None):
-    if not file_path.isalnum():
+    """Get paste content or delete if token is provided"""
-        raise HTTPException(status_code=404, detail="File not found")
+    if not paste_id.isalnum():
-    
+        raise HTTPException(status_code=404, detail="Paste not found")
-    file_location = UPLOAD_DIR / file_path
+
-    
+    file_location = UPLOAD_DIR / paste_id
    if not file_location.exists() or not file_location.is_file():
-        raise HTTPException(status_code=404, detail="File not found")
+        raise HTTPException(status_code=404, detail="Paste not found")
-    
+
    try:
        with open(file_location, 'r', encoding='utf-8') as f:
            content = f.read()
        return content
-    except Exception:
+    except Exception as e:
        log("ERROR", "download_failed",
            paste_id=paste_id,
            error=str(e))
        raise HTTPException(status_code=500, detail="Failed to read file")
@app.post("/{paste_id}", response_class=PlainTextResponse)
 async def delete_paste_endpoint(paste_id: str, request: Request, token: Optional[str] = None):
    """Delete a paste using its deletion token"""
    client_ip = get_real_ip(request)
    user_agent = request.headers.get("User-Agent", "unknown")
    # Validate paste_id format
    if not paste_id.isalnum():
        raise HTTPException(status_code=404, detail="Paste not found")
    # Check if token is provided (query param or header)
    deletion_token = token or request.headers.get("X-Delete-Token")
    if not deletion_token:
        log("WARNING", "deletion_failed",
            paste_id=paste_id,
            client_ip=client_ip,
            user_agent=user_agent,
            reason="missing_token")
        raise HTTPException(status_code=404, detail="Not found")
    # Validate token length (prevent abuse with extremely long tokens)
    if len(deletion_token) > 128:
        log("WARNING", "deletion_failed",
            paste_id=paste_id,
            client_ip=client_ip,
            user_agent=user_agent,
            reason="invalid_token_length")
        raise HTTPException(status_code=403, detail="Deletion failed")
    # Load metadata
    metadata = load_metadata(paste_id)
    if not metadata:
        log("WARNING", "deletion_failed",
            paste_id=paste_id,
            client_ip=client_ip,
            user_agent=user_agent,
            reason="metadata_not_found")
        raise HTTPException(status_code=404, detail="Deletion failed")
    # Verify deletion token using constant-time comparison
    if not secrets.compare_digest(deletion_token, metadata.get("deletion_token", "")):
        log("WARNING", "deletion_failed",
            paste_id=paste_id,
            client_ip=client_ip,
            user_agent=user_agent,
            reason="invalid_token")
        raise HTTPException(status_code=403, detail="Deletion failed")
    # Delete the paste and metadata
    if delete_paste(paste_id):
        log("INFO", "paste_deleted",
            paste_id=paste_id,
            client_ip=client_ip,
            user_agent=user_agent,
            deletion_method="user_requested")
        return "Paste deleted successfully\n"
    else:
        log("ERROR", "deletion_failed",
            paste_id=paste_id,
            client_ip=client_ip,
            user_agent=user_agent,
            reason="file_not_found")
        raise HTTPException(status_code=500, detail="Failed to delete paste")
@app.get("/", response_class=PlainTextResponse)
 async def root():
    # Build authentication notice and examples if tokens are configured
    auth_notice = "\n- Authentication: not required"
    auth_section = ""
    auth_header_curl = ""
    auth_header_wget = ""
    auth_header_ps = ""
    if UPLOAD_TOKENS:
        auth_notice = "\n- Authentication: REQUIRED (Bearer token)"
        auth_header_curl = '-H "Authorization: Bearer $LINEDUMP_TOKEN" '
        auth_header_wget = '--header="Authorization: Bearer $LINEDUMP_TOKEN" '
        auth_header_ps = ' -Headers @{"Authorization"="Bearer $env:LINEDUMP_TOKEN"}'
        auth_section = f"""
 ████ Authentication Examples ████
 When authentication is enabled, include Bearer token in Authorization header:
 Set token as environment variable (recommended):
 export LINEDUMP_TOKEN="your-token-here"
    █ curl:
 curl -H "Authorization: Bearer $LINEDUMP_TOKEN" -X POST -d "Cheers" {BASEURL}/
    █ wget:
 wget --header="Authorization: Bearer $LINEDUMP_TOKEN" --post-data="Cheers" -O- {BASEURL}/
    █ Powershell:
 $env:LINEDUMP_TOKEN="your-token-here"
 Invoke-RestMethod -Uri "{BASEURL}/" -Headers @{{"Authorization"="Bearer $env:LINEDUMP_TOKEN"}} -Method Post -Body "Cheers"
 """
    return f"""LD {BASEURL}
 ████ General ████
@ -114,43 +433,48 @@ async def root():
 - File limit: {MAX_FILE_SIZE_MB} MB
 - Rate limit: {RATE_LIMIT}
 - text-only
- no server-side encryption, consider content public or use client-side encryption
+- no server-side encryption, consider content public or use client-side encryption{auth_notice}
-
+{auth_section}
 ████ Usage ████
    █ Upload curl:
-curl -X POST -d "Cheers" {BASEURL}/                  # string
+curl {auth_header_curl}-X POST -d "Cheers" {BASEURL}/                  # string
-curl -X POST {BASEURL} --data-binary @- < file.txt   # file
+curl {auth_header_curl}-X POST {BASEURL} --data-binary @- < file.txt   # file
-ip -br a | curl -X POST {BASEURL} --data-binary @-   # command output
+ip -br a | curl {auth_header_curl}-X POST {BASEURL} --data-binary @-   # command output
    █ Upload wget:
-echo "Cheers" | wget --post-data=@- -O- {BASEURL}/   # string
+echo "Cheers" | wget {auth_header_wget}--post-data=@- -O- {BASEURL}/   # string
-wget --post-file=file.txt -O- {BASEURL}/             # file
+wget {auth_header_wget}--post-file=file.txt -O- {BASEURL}/             # file
-ip -br a | wget --post-data=@- -O- {BASEURL}/        # command output
+ip -br a | wget {auth_header_wget}--post-data=@- -O- {BASEURL}/        # command output
    █ Upload Powershell:
-Invoke-RestMethod -Uri "{BASEURL}/" -Method Post -Body "Cheers"               # string
+Invoke-RestMethod -Uri "{BASEURL}/"{auth_header_ps} -Method Post -Body "Cheers"               # string
-Invoke-RestMethod -Uri "{BASEURL}/" -Method Post -InFile "file.txt"           # file
+Invoke-RestMethod -Uri "{BASEURL}/"{auth_header_ps} -Method Post -InFile "file.txt"           # file
-ipconfig | Invoke-RestMethod -Uri "{BASEURL}/" -Method Post -Body {{ $_ }}      # command output
+ipconfig | Invoke-RestMethod -Uri "{BASEURL}/"{auth_header_ps} -Method Post -Body {{ $_ }}      # command output
    █ Download:
-curl {BASEURL}/{{path}}                                    # print to stdout
+curl {BASEURL}/{{paste_id}}                                    # print to stdout
-curl -o filename.txt {BASEURL}/{{path}}                    # save to file
+curl -o filename.txt {BASEURL}/{{paste_id}}                    # save to file
-wget -O- {BASEURL}/{{path}}                                # print to stdout
+wget -O- {BASEURL}/{{paste_id}}                                # print to stdout
-wget -O filename.txt {BASEURL}/{{path}}                    # save to file
+wget -O filename.txt {BASEURL}/{{paste_id}}                    # save to file
-Invoke-RestMethod -Uri "{BASEURL}/{{path}}"                                   # print to stdout
+Invoke-RestMethod -Uri "{BASEURL}/{{paste_id}}"                                   # print to stdout
-Invoke-RestMethod -Uri "{BASEURL}/{{path}}" -OutFile "filename.txt"           # save to file
+Invoke-RestMethod -Uri "{BASEURL}/{{paste_id}}" -OutFile "filename.txt"           # save to file
    █ Delete:
 curl -X POST "{BASEURL}/{{paste_id}}?token={{deletion_token}}"  # delete paste
@ -161,25 +485,25 @@ Invoke-RestMethod -Uri "{BASEURL}/{{path}}" -OutFile "filename.txt"           #
 echo 'Cheers' \
  | openssl enc -aes-256-cbc -pbkdf2 -salt -base64 -pass pass:yourkey \
-  | curl -X POST -d @- {BASEURL}/
+  | curl {auth_header_curl}-X POST -d @- {BASEURL}/
    █ Upload file:
 openssl enc -aes-256-cbc -pbkdf2 -salt -pass pass:yourkey -base64 < file.txt \
-  | curl -sS -X POST {BASEURL} --data-binary @-
+  | curl {auth_header_curl}-sS -X POST {BASEURL} --data-binary @-
    █ Upload command output:
 ip -br a \
  | openssl enc -aes-256-cbc -pbkdf2 -salt -pass pass:yourkey -base64 \
-  | curl -sS -X POST {BASEURL} --data-binary @-
+  | curl {auth_header_curl}-sS -X POST {BASEURL} --data-binary @-
    █ Download:
-curl -s {BASEURL}/{{path}} \
+curl -s {BASEURL}/{{paste_id}} \
  | base64 -d \
  | openssl enc -d -aes-256-cbc -pbkdf2 -pass pass:yourkey
@ -193,7 +517,7 @@ curl -s {BASEURL}/{{path}} \
 {{ cmd() {{ printf "\\n# %s\\n" "$*"; "$@"; }}; \\
    cmd hostname; \\
    cmd ip -br a; \\
-    }} 2>&1 | curl -X POST {BASEURL} --data-binary @-
+    }} 2>&1 | curl {auth_header_curl}-X POST {BASEURL} --data-binary @-
    █ Continous command:
@ -201,7 +525,7 @@ curl -s {BASEURL}/{{path}} \
 (timeout --signal=INT --kill-after=5s 10s \\
    ping 127.1; \\
    echo "--- Terminated ---") | \\
-    curl -X POST --data-binary @- {BASEURL}
+    curl {auth_header_curl}-X POST --data-binary @- {BASEURL}
Author	SHA1	Message	Date
CaffeineFueled	a8707a267b	ADD multiline support for desc env var for terms and other links	2025-10-26 11:39:46 +01:00
CaffeineFueled	b62ec8473e	CHANGE format for deletion token display	2025-10-26 11:23:21 +01:00
CaffeineFueled	6337f47b0d	ADD information about wiki	2025-10-20 16:27:23 +02:00
CaffeineFueled	f3a52b33d3	CHANGE docs from {path} to {paste_id} to make it more persistent	2025-10-16 18:19:23 +02:00
CaffeineFueled	c7446d0f48	FIX typo in simple docker example	2025-10-16 12:32:06 +02:00
CaffeineFueled	842cc1606d	ADD examples for deletion and add remark for cli output	2025-10-16 01:59:10 +02:00
CaffeineFueled	9ff85a4e7e	ADD path validation for deletions, change to PSOT requests only, some error handling	2025-10-16 01:55:28 +02:00
CaffeineFueled	cc886d4675	ADD deletion function with POST request and token in query	2025-10-16 01:38:31 +02:00
CaffeineFueled	ed081b280c	CHANGE info about the need of a reverse-proxy	2025-10-16 00:37:14 +02:00
CaffeineFueled	0556f98c95	DEL dup function to retreive real-ip for logging and rate-limit	2025-10-16 00:30:17 +02:00
CaffeineFueled	4ff65e8561	ADD logging feature #13	2025-10-16 00:09:07 +02:00
CaffeineFueled	2a7bab59f3	ADD auth token for paste creatiog - ref #1	2025-10-10 21:06:49 +02:00