Skip to content

Add tunneling options to slack-app-setup and enhance service mode configuration #1772

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
amangalampalli-ks wants to merge 4 commits into
base: feature/setup-tunnelling-and-streamline-adv-security
Choose a base branch
from
Open

Add tunneling options to slack-app-setup and enhance service mode configuration #1772

amangalampalli-ks wants to merge 4 commits into from

Conversation

@amangalampalli-ks
Copy link
Contributor

@amangalampalli-ks amangalampalli-ks commented Jan 20, 2026
edited
Loading

Add tunneling options to slack-app-setup and enhance service mode configuration

Enhancements

  1. Advanced security configuration for streamlined service creation: Added CLI arguments for rate limiting (-rl), encryption (-ek), and token expiration (-te) to service-create command.

  2. Advanced security prompts in service-docker-setup: Added interactive prompts for advanced security options including IP filtering (allowed/denied lists), rate limiting, response encryption, and token expiration

  3. Tunneling options for slack-app-setup: Added ngrok and Cloudflare configuration prompts to slack-app-setup command. Public URLs are automatically constructed and stored in vault record for slack-app tunnelling reference.

  4. Updated default resource names: Changed all default names from "CSMD" prefix to "Commander Service Mode" for better clarity:

    • Folders: "Commander Service Mode - Docker" / "Commander Service Mode - Slack App"
    • Config records: "Commander Service Mode Docker Config" / "Commander Service Mode Slack App Config"
    • KSM App: "Commander Service Mode - Docker KSM App"
    • Client device: "Commander Service Mode - Docker KSM App Client"

Bug Fixes

  1. Fixed ngrok/cloudflare URLs left empty in service config.json and vault records: Previously, ngrok_public_url and cloudflare_public_url were not being constructed from custom domains. Now correctly builds URLs (e.g., https://<custom-domain>.ngrok.io or https://<subdomain>.<domain>.com) in both interactive and streamlined modes, and saves them to both service_config.json and the vault record's custom fields.

  2. Fixed rate limiting not working correctly for v2 API: Each API endpoint now has independent rate limit counters, and removed incorrect multiplier logic that was causing premature blocking

  3. Fixed bypass master password message printed during service mode startup: Removed unnecessary debug/info message that was displayed every time service mode started

@amangalampalli-ks amangalampalli-ks self-assigned this Jan 20, 2026
@amangalampalli-ks amangalampalli-ks marked this pull request as ready for review January 20, 2026 06:15
sali-ks
sali-ks reviewed Jan 20, 2026
View reviewed changes
sali-ks
sali-ks reviewed Jan 20, 2026
View reviewed changes
@amangalampalli-ks
Fix review comments, pentest port expose issue, remove tls from setup…
94a99e3 
… commands, remove api-key from docker and UI print messages
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@pvagare-ks pvagare-ks Awaiting requested review from pvagare-ks

@sali-ks sali-ks Awaiting requested review from sali-ks

@sgaddala-ks sgaddala-ks Awaiting requested review from sgaddala-ks

Assignees

@amangalampalli-ks amangalampalli-ks

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@amangalampalli-ks @sali-ks