JP Site Search - Security Model

Article Index

JP Site Search
What is JP Site Search?
What is Typesense?
Typesense Hosting Options
Recommended Typesense Server Setup
Quick Docker Example
Installation
Initial Setup
Sources and Providers
Joomla Articles
Joomla Contacts
Joomla Categories
DOCman Provider Add-on
Indexing
CLI and Cron
Frontend Module
Autocomplete Layouts
Full Search Page
Analytics and Search Quality
Diagnostics
Security Model
Troubleshooting
Recommended First Setup
All Pages

Page 21 of 23

Security Model

JP Site Search is designed so that frontend visitors never communicate directly with Typesense.

Correct flow:

Browser
→ Joomla endpoint
→ server-side Typesense request
→ normalized safe result response

JP Site Search should never expose the following to public visitors:

Typesense API keys
Raw Typesense payloads
Raw filter expressions
Collection names
Access metadata
Administrator URLs
Private file paths
Unsafe external URLs

Sources and provider plugins must return safe normalized documents. JP Site Search handles public search through Joomla and applies runtime gating for enabled and disabled sources.

Extension list

12 Months - Bundle Subscription

yootheme

JP YOOtheme Menu J5 J6 W Y5

JP AJAX Search J5 J6 Y Y5

JP CS RSS Feed J5 J6 W Y5

JP CE Modal Pro J5 J6 W Y5

JP CE Grid Pro J5 J6 W Y5

JP YOOtheme User Tools J5 J6 Y5

JP CS Event Booking J5 J6 Y Y5

JP CE Audio Player Pro J5 J6 W Y5

JP CE DocMan List J5 J6 Y5

JP CS DocMan J5 J6 Y5

JP YOOtheme Tertiary J5 J6 W Y5

JP CE Accordion Pro J5 J6 W Y5

JP CE jDownloads List J5 Y Y5

JP CS jDownloads J5 Y Y5

JP CE Floating Buttons J5 J6 W Y5

JP CE Search Pro J5 J6 Y5

JP YOOtheme Admin Bar J4 J5 Y

JP CE Button Pro J5 J6 W Y5

JP CE Add to Calendar J5 J6 W Y5

JP YOOtheme Alert Message J5 J6 Y5

JP CS Contacts J5 J6 Y5

JP CE Switcher Pro J5 J6 W Y5

JP CE Contact Form J5 J6 W Y5

JP CE Promo Calendar J5 J6 W Y5

JP CE Weather J5 J6 W Y5

JP CE Slideshow Pro J5 J6 W Y5

JP CE Automatic TOC J5 J6 W Y Y5

JP CE Heading GIF FX J5 J6 W Y5

JP CE Team Profile J5 J6 W Y5

JP CE Calendar Events J5 J6 W Y5

JP CE Social Share J5 J6 W Y5

JP CE Youtube Channel Grid J5 J6 W Y5

ecommerce

VMuikit X (10.x.x) J5 Y Y5

PCuikit J5 J6 Y Y5

HSuikit Core J5 J6 Y Y5

JP AcyMailing Phoca Cart Integration J4 J5

VirtueMart One Page Checkout J4 J5

JP VM Ajax Search J4 J5

joomla

JP Joom2Static J3 J4 J5

JP Image Prepare J4

JP CS EDocman J6 Y Y5

JP Particles J5 J6 Y5

JPro Sources - EDocman

Support Tickets

Documentation

Changelogs

JP Site Search - Security Model

Article Index

Security Model

JP YOOtheme Menu

JP AJAX Search

JP CS RSS Feed

JP CE Modal Pro

JP CE Grid Pro

JP YOOtheme User Tools

JP CS Event Booking

JP CE Audio Player Pro

JP CE DocMan List

JP CS DocMan

JP YOOtheme Tertiary

JP CE Accordion Pro

JP CE jDownloads List

JP CS jDownloads

JP CE Floating Buttons

JP CE Search Pro

JP YOOtheme Admin Bar

JP CE Button Pro

JP CE Add to Calendar

JP YOOtheme Alert Message

JP CS Contacts

JP CE Switcher Pro

JP CE Contact Form

JP CE Promo Calendar

JP CE Weather

JP CE Slideshow Pro

JP CE Automatic TOC

JP CE Heading GIF FX

JP CE Team Profile

JP CE Calendar Events

JP CE Social Share

JP CE Youtube Channel Grid

VMuikit X (10.x.x)

PCuikit

HSuikit Core

JP AcyMailing Phoca Cart Integration

VirtueMart One Page Checkout

JP VM Ajax Search

JP Joom2Static

JP Image Prepare

JP CS EDocman

JP Particles