Discource-C
/
discourse
mirror of https://github.com/discourse/discourse.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
discourse/spec
History
David Taylor 4c9ca24ccf
FEATURE: Hash API keys in the database (#8438) 
API keys are now only visible when first created. After that, only the first four characters are stored in the database for identification, along with an sha256 hash of the full key. This makes key usage easier to audit, and ensures attackers would not have access to the live site in the event of a database leak.

This makes the merge lower risk, because we have some time to revert if needed. Once the change is confirmed to be working, we will add a second commit to drop the `key` column.
 		2019-12-12 11:45:00 +00:00
..
components UX: Include public groups in mentionable groups set (#8516) 2019-12-12 13:13:40 +02:00
fabricators FEATURE: Hash API keys in the database (#8438) 2019-12-12 11:45:00 +00:00
fixtures FIX: Ignore DMARC for emails sent to mailing list mirror 2019-12-06 13:29:39 +01:00
helpers FIX: email excerpts for posts starting with a quote were displaying a username 2019-11-19 12:35:23 -05:00
import_export DEV: clean up dependencies in spec 2019-10-02 14:50:54 +10:00
integration UX: Include public groups in mentionable groups set (#8516) 2019-12-12 13:13:40 +02:00
integrity DEV: Update markdown-it from 8.4.1 to 10.0.0 (#8164) 2019-10-08 13:00:22 +02:00
jobs DEV: s/\$redis/Discourse\.redis (#8431) 2019-12-03 10:05:53 +01:00
lib Build(deps): Bump aws-sdk-s3 from 1.36.1 to 1.59.0 (#8502) 2019-12-11 10:18:11 -08:00
mailers DEV: s/\$redis/Discourse\.redis (#8431) 2019-12-03 10:05:53 +01:00
models FEATURE: Hash API keys in the database (#8438) 2019-12-12 11:45:00 +00:00
multisite FEATURE: Add support for secure media (#7888) 2019-11-18 11:25:42 +10:00
requests FEATURE: Hash API keys in the database (#8438) 2019-12-12 11:45:00 +00:00
serializers FIX: Hide old bookmark button on post-menu if SiteSetting.enable_bookmarks_with_reminders 2019-12-12 16:28:01 +10:00
services DEV: s/\$redis/Discourse\.redis (#8431) 2019-12-03 10:05:53 +01:00
support DEV: update rubocop to version 0.77 2019-12-10 11:48:39 +11:00
tasks DEV: s/\$redis/Discourse\.redis (#8431) 2019-12-03 10:05:53 +01:00
views/omniauth_callbacks FEATURE: Use full page redirection for all external auth methods (#8092) 2019-10-08 12:10:43 +01:00
rails_helper.rb DEV: s/\$redis/Discourse\.redis (#8431) 2019-12-03 10:05:53 +01:00