![\"\"](\"https:\/\/blogs.scummvm.org\/shivangnagta\/wp-content\/uploads\/sites\/81\/2025\/08\/Screenshot-2025-08-11-at-5.30.55-PM-300x180.png\")
On top of that, I introduced rate limiting using Flask-Limiter. Currently, the validation endpoint allows a maximum of 3 requests per minute per user.<\/p>\n
GitHub OAuth & Role-Based Access<\/h6>\n
GitHub OAuth authentication is now in place, introducing a three-level role-based system. Though, I have tested it with my own dummy organisation, the integration with ScummVM is remaining:<\/p>\n
- \n
- \n
Admin \u2013 Full access, plus the ability to clear the database.<\/p>\n<\/li>\n
- \n
Moderators \u2013 Same permissions as Admin, except database clearing.<\/p>\n<\/li>\n
- \n
Read-Only \u2013 Logged-in users with viewing rights only.<\/p>\n<\/li>\n<\/ul>\n
![\"\"](\"https:\/\/blogs.scummvm.org\/shivangnagta\/wp-content\/uploads\/sites\/81\/2025\/08\/Screenshot-2025-08-11-at-5.50.43-PM-300x241.png\")
Github OAuth<\/figcaption><\/figure>\n Project Restructuring & UV Integration<\/h6>\n
As suggested by my mentor Rvanlaar, I restructured the project into a Python module, making the import logic cleaner and improving overall modularity. I also added UV, a high-performance Python package and project manager, offering faster dependency handling compared to pip.<\/p>\n
Other Fixes & Improvements<\/h6>\n
- \n
- \n
Updated the apache config file to use the Python virtual environment instead of the global installation.<\/p>\n<\/li>\n
- \n
Correctly decode MacBinary filenames from headers using MacRoman instead of UTF-8.<\/p>\n<\/li>\n
- \n
Improved error handling for the scan utlility.<\/p>\n<\/li>\n
- Use one of size or size-rd for filtering filesets for scan.dat in case of macfiles instead of both simultaneously.<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"
Welcome to this week’s blog. This week, my work focused on enhancing API security, adding github authentication, refining project structure, and introducing a faster Python package manager (UV). API Security Improvements I implemented some checks on the validation endpoint, which processes the user game files data sent from the ScummVM application. These checks are designed […]<\/p>\n","protected":false},"author":29,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-52","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"_links":{"self":[{"href":"https:\/\/blogs.scummvm.org\/shivangnagta\/wp-json\/wp\/v2\/posts\/52","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blogs.scummvm.org\/shivangnagta\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blogs.scummvm.org\/shivangnagta\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blogs.scummvm.org\/shivangnagta\/wp-json\/wp\/v2\/users\/29"}],"replies":[{"embeddable":true,"href":"https:\/\/blogs.scummvm.org\/shivangnagta\/wp-json\/wp\/v2\/comments?post=52"}],"version-history":[{"count":3,"href":"https:\/\/blogs.scummvm.org\/shivangnagta\/wp-json\/wp\/v2\/posts\/52\/revisions"}],"predecessor-version":[{"id":57,"href":"https:\/\/blogs.scummvm.org\/shivangnagta\/wp-json\/wp\/v2\/posts\/52\/revisions\/57"}],"wp:attachment":[{"href":"https:\/\/blogs.scummvm.org\/shivangnagta\/wp-json\/wp\/v2\/media?parent=52"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blogs.scummvm.org\/shivangnagta\/wp-json\/wp\/v2\/categories?post=52"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blogs.scummvm.org\/shivangnagta\/wp-json\/wp\/v2\/tags?post=52"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
- \n