Удаление из документов токенов

author Aleksey Filippov <Aleksey.Filippov@erp-flowers.ru>

Wed, 3 Dec 2025 09:25:51 +0000 (12:25 +0300)

committer Aleksey Filippov <Aleksey.Filippov@erp-flowers.ru>

Wed, 3 Dec 2025 09:25:51 +0000 (12:25 +0300)
author Aleksey Filippov <Aleksey.Filippov@erp-flowers.ru>
Wed, 3 Dec 2025 09:25:51 +0000 (12:25 +0300)
committer Aleksey Filippov <Aleksey.Filippov@erp-flowers.ru>
Wed, 3 Dec 2025 09:25:51 +0000 (12:25 +0300)
diff --git a/erp24/docs/api/api2/INTEGRATION_GUIDE.md b/erp24/docs/api/api2/INTEGRATION_GUIDE.md

index 2fdd4a0d5fa72be8e6edda81b5f7d856717ea898..54b44e78f60618d57fb6655ce341241310a8fe3e 100644 (file)
--- a/erp24/docs/api/api2/INTEGRATION_GUIDE.md
+++ b/erp24/docs/api/api2/INTEGRATION_GUIDE.md
@@ -54,7 +54,7 @@ Content-Type: application/json
  **Ответ**:
  ```json
  {
-  "access-token": "eyJ0eXAiOiJKV1QiLCJhbGc..."
+  "access-token": "111111111Gc..."
  }
  ```
  
@@ -79,7 +79,7 @@ Content-Type: application/json
  **Вариант 1: Заголовок (рекомендуется)**
  ```http
  POST /api2/client/balance
-X-ACCESS-TOKEN: eyJ0eXAiOiJKV1QiLCJhbGc...
+X-ACCESS-TOKEN: 11111111QiLCJhbGc...
  Content-Type: application/json
  
  {
diff --git a/erp24/docs/services/P3_FINAL_COMPLETION_REPORT.md b/erp24/docs/services/P3_FINAL_COMPLETION_REPORT.md

index 2212dc01e577ece470eab322b33daadc9d2923aa..c7ec313ff6694c5dd7e472cb75f42de3d76d9a02 100644 (file)
--- a/erp24/docs/services/P3_FINAL_COMPLETION_REPORT.md
+++ b/erp24/docs/services/P3_FINAL_COMPLETION_REPORT.md
@@ -104,8 +104,8 @@
  **Строки:** 13-14
  **Проблема:**
  ```php
-public $botToken = "8063257458:AAGnMf4cxwJWlYLF1wS_arn4PrOaLs9ERQQ";  // ❌ Hardcoded!
-public $chatId ="-1001861631125";                                   // ❌ Hardcoded!
+public $botToken = "11111111";  // ❌ Hardcoded!
+public $chatId ="11111111";                                   // ❌ Hardcoded!
  ```
  
  **Влияние:** Credentials в коде → утечка в Git → компрометация Telegram бота
diff --git a/erp24/docs/services/TelegramTarget.md b/erp24/docs/services/TelegramTarget.md

index dd4bf038fc446693b0604dfb099417facde461c8..c2e5a655908da6cd5561438f1f80c3b89bb885d1 100644 (file)
--- a/erp24/docs/services/TelegramTarget.md
+++ b/erp24/docs/services/TelegramTarget.md
@@ -14,8 +14,8 @@
  ## ⚠️ КРИТИЧЕСКАЯ ПРОБЛЕМА БЕЗОПАСНОСТИ
  
  ```php
-public $botToken = "8063257458:AAGnMf4cxwJWlYLF1wS_arn4PrOaLs9ERQQ";  // ПУБЛИЧНЫЙ КОД!
-public $chatId = "-1001861631125";  // ПУБЛИЧНЫЙ КОД!
+public $botToken = "1111111";  // ПУБЛИЧНЫЙ КОД!
+public $chatId = "111111111";  // ПУБЛИЧНЫЙ КОД!
  ```
  
  **HARDCODED CREDENTIALS** в исходном коде → критическая уязвимость безопасности!
@@ -155,8 +155,8 @@ return [
  
  #### 1. Hardcoded Telegram credentials
  ```php
-public $botToken = "8063257458:AAGnMf4cxwJWlYLF1wS_arn4PrOaLs9ERQQ";
-public $chatId = "-1001861631125";
+public $botToken = "1111111111";
+public $chatId = "11111111";
  ```
  
  **Риски:**
@@ -237,8 +237,8 @@ return [
  ];
  
  // .env:
-TELEGRAM_BOT_TOKEN=8063257458:AAGnMf4cxwJWlYLF1wS_arn4PrOaLs9ERQQ
-TELEGRAM_CHAT_ID=-1001861631125
+TELEGRAM_BOT_TOKEN=11111111
+TELEGRAM_CHAT_ID=111111111
  ```
  
  ### 2. Отправлять ВСЕ сообщения
author	Aleksey Filippov <Aleksey.Filippov@erp-flowers.ru>
	Wed, 3 Dec 2025 09:25:51 +0000 (12:25 +0300)
committer	Aleksey Filippov <Aleksey.Filippov@erp-flowers.ru>
	Wed, 3 Dec 2025 09:25:51 +0000 (12:25 +0300)
erp24/docs/api/api2/INTEGRATION_GUIDE.md		patch \| blob \| history
erp24/docs/services/P3_FINAL_COMPLETION_REPORT.md		patch \| blob \| history
erp24/docs/services/TelegramTarget.md		patch \| blob \| history