Publicly Accessible API Documentation via Swagger vulnerability remediation doc

[ibi420]

Description

This change addresses a vulnerability where Swagger API documentation was publicly accessible in production environments. Swagger has now been disabled in production to prevent unauthorised users from discovering sensitive backend routes and internal API details.

Fixes # (issue)

Type of change

• Bug fix (non-breaking change which fixes an issue)

How Has This Been Tested?

• Attempted to access Swagger documentation endpoints (/api/swagger_doc.json, /swagger_doc.json) in a production environment.
• Verified that requests are redirected to the homepage (/home) and Swagger documentation is no longer exposed.
• Confirmed that Swagger remains available and functional in development environments for testing and debugging purposes.

Testing Checklist

• Tested in latest Chrome

Checklist

• My code follows the style guidelines of this project
• I have performed a self-review of my code
• I have commented my code in hard-to-understand areas
• I have made corresponding changes to the documentation
• My changes generate no new warnings
• I have requested a review from security and project maintainers on the Pull Request

[netlify]

❌ Deploy Preview for ontrackdocumentation failed.

Name	Link
🔨 Latest commit	c5f45dc
🔍 Latest deploy log	https://app.netlify.com/projects/ontrackdocumentation/deploys/68c8fdf8821e7600084e399b

[martindolores]

Documentation looks good to me! Not sure if this one is ready as you have put it in draft?

[martindolores]

Great work :)

[SyedaLamiaTabassum]

you can add the changed or the newly added code segment to signify the difference.

[ibi420]

It's not good practice to reveal security code in documentation, as it gives attackers knowledge on how to circumvent them.

[WaelAlahamdi]

Hi @ibi420, I have reviewed the documentation, and everything looks good. No further comments from my side.