VYASA
Theme
⌄
abyssal-serenity
alder-protocol
arcade-noir
atelier-register
atlas-ledger
brass-bureau
civic-linen
cloister-grid
creative-violet
dot-matrix-dmg
dream-poster
ember-docket
executive-sunrise
harbor-brief
heliograph-ledger
kinetic-scholar
koan-silence
lush-meridian
meridian-charter
midnight-review
monsoon-manual
neon-newsprint
neon-terminal
north-course
observatory-note
overprint-carnival
porcelain-brief
quarry-signal
serene-manuscript
signal-theory
slate-protocol
stone-gazette
sylvan-archive
tidal-index
transit-folio
ultra-soft
vyasa-executive
vyasa-sunlit
Posts
Vyasa Manual
Security
←
6 / 7
→
RBAC (optional)
URL copied
Security Features
URL copied
HTML escaping
: Code blocks automatically escaped via
html.escape()
External link protection
:
rel="noopener noreferrer"
on external links
Path validation
: Relative path resolution checks if resolved path is within root
Session-based auth
: Uses Starlette sessions, not exposed in URLs
CSRF protection
: Forms use POST with
enctype="multipart/form-data"
2
✦
3
✦ > Authentication (optional)
4
✦ > Google OAuth (optional)
5
✦ > RBAC (optional)
6
✦ > RBAC (optional) > Security Features
Overview
Back to doc view