89352f6fac
Some checks failed
WEVAL NonReg / nonreg (push) Has been cancelled
Decision user post-audit: put 4 pages behind auth_request /auth/check Patched pages: - faq-techniques.html (already auth - no change) - wepredict.html (NEW AUTH - was public HTTP 200) - faq-knowledge-base.html (already auth - no change) - landing-ocp.html (NEW AUTH - was public HTTP 200) Nginx config /etc/nginx/sites-enabled/weval-consulting: - Added 2 location blocks with auth_request - nginx -t PASS · systemctl reload nginx OK - External test all 4: HTTP 302 redirect to /login?r=... - chattr +i restored on nginx config Audit revealed 220 leaks on 34/38 public pages (8 categories). User selected behind-auth strategy for these 4 highest-risk pages. Zero regression · Zero ecrasement · GOLD nginx config in vault Doctrine saved: /opt/obsidian-vault/doctrines/pages-behind-auth.md