Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Encryption & Signature Key rotation for Cookie #233

Closed
2 tasks done
jeevatkm opened this issue Dec 17, 2018 · 1 comment
Closed
2 tasks done

Encryption & Signature Key rotation for Cookie #233

jeevatkm opened this issue Dec 17, 2018 · 1 comment
Assignees
@jeevatkm
Labels
enhancement lib-security Security (Authc, Authz, Password Crypto, etc)
Milestone
v0.13.0 Milestone

Comments

@jeevatkm
Copy link
Member

jeevatkm commented Dec 17, 2018
edited
Loading

The goal is provide a configurable way to rotate Encryption and Signature Key for Cookie.

In a real world usage as part of Security Compliance in the organization requires to Rotate keys in a certain interval to reduce the attack vector on their applications.

As you know aah is security aware framework and will provide every possible way to make aah application is more secure.

  • Implementation
  • Documentation
@jeevatkm jeevatkm added enhancement lib-security Security (Authc, Authz, Password Crypto, etc) labels Dec 17, 2018
@jeevatkm jeevatkm mentioned this issue Dec 17, 2018
Closed
@jeevatkm jeevatkm added this to the v0.13.0 Milestone milestone Jan 2, 2019
@jeevatkm jeevatkm self-assigned this Jan 9, 2019
jeevatkm added a commit that referenced this issue Jan 12, 2019
@jeevatkm
#233 session cookie key rotation, #234 anti-csrf key rotation and #242
8de2c31 
…samesite cookie attribute support
jeevatkm added a commit that referenced this issue Jan 12, 2019
@jeevatkm
sign, encryption key rotation #233 #234 #242
2539f9d 
- session cookie
- anti-csrf cookie
- samesite cookie attribute support
@jeevatkm jeevatkm mentioned this issue Jan 12, 2019
Merged
jeevatkm added a commit that referenced this issue Jan 13, 2019
@jeevatkm
sign, encryption key rotation (#243)
413b805 
- #233 session cookie
- #234 anti-csrf cookie
- #242 samesite cookie attribute support
jeevatkm added a commit to go-aah/docs that referenced this issue Jan 15, 2019
@jeevatkm
docs update for go-aah/aah#233 go-aah/aah#234 go-aah/aah#242
3a34d2c
@jeevatkm
Copy link
Member Author

Its done 😄

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jeevatkm jeevatkm

Labels
enhancement lib-security Security (Authc, Authz, Password Crypto, etc)
Projects
None yet
Milestone
v0.13.0 Milestone
Development

No branches or pull requests
1 participant
@jeevatkm