Fix aiomysql pool_pre_ping crash, add rate limiting and security hardening

Remove pool_pre_ping=True to fix startup crash caused by aiomysql 0.2.0
async adapter requiring a reconnect argument SQLAlchemy does not pass.
Add slowapi rate limiting, structured logging, CORS config, backend
health check, and nginx security headers.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
2026-05-25 00:44:23 -07:00
parent 866c2e0bed
commit ef8b44934c
10 changed files with 67 additions and 11 deletions
+3
View File
@@ -12,3 +12,6 @@ ACCESS_TOKEN_EXPIRE_MINUTES=480
# Admin account (seeded on every container start)
ADMIN_USERNAME=admin@example.com
ADMIN_PASSWORD=changeme_admin
# CORS: comma-separated list of allowed origins
ALLOWED_ORIGINS=https://yourdomain.com