Skip to content

New "jsoncs3" backend for app token storage #112

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
rhafer merged 2 commits into from
Mar 20, 2025
Merged

New "jsoncs3" backend for app token storage #112

rhafer merged 2 commits into from
Mar 20, 2025

Conversation

@rhafer
Copy link

@rhafer rhafer commented Mar 19, 2025

This backend stores the apptoken in a JSON file per user using the metabackend. By default passwords are generated using the "diceware" algorithm (based on https://xkcd.com/936/). It can be switched to generate "normal" random password. Passwords are hashed using the argon2id algorithm.
Note: There is no form of caching for now. I.e. the json file is loaded upon every single authentication request so there is lot of room for improvement here. To limit the amount of write operations the Utime (time of last usage of the password) is however only updated with a granularity of 5 minutes.

opencloud-eu/opencloud#207

@rhafer rhafer requested a review from aduffeck March 19, 2025 10:31
@rhafer rhafer self-assigned this Mar 19, 2025
rhafer and others added 2 commits March 20, 2025 08:22
@rhafer
New "jsoncs3" backend for app token storage
d3538eb 
This backend stores the apptoken in a JSON file per user using the
metabackend. By default passwords are generated using the "diceware"
algorithm (based on https://xkcd.com/936/). It can be switched to
generate "normal" random password. Passwords are hashed using the
argon2id algorithm.
Note: There is no form of caching for now. I.e. the json file is loaded
upon every single authentication request so there is lot of room for
improvement here. To limit the amount of write operations the Utime
(time of last usage of the password) is however only updated with a
granularity of 5 minutes.

opencloud-eu/opencloud#207
@aduffeck @rhafer
Do not choke if there are no app tokens yet
c57f7c4
@rhafer rhafer merged commit 9ac9961 into opencloud-eu:main Mar 20, 2025
2 checks passed
@openclouders openclouders mentioned this pull request Mar 20, 2025
Merged
1 task
@ScharfViktor ScharfViktor mentioned this pull request Apr 7, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aduffeck aduffeck aduffeck approved these changes

Assignees

@rhafer rhafer

Labels

Type:Enhancement

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@rhafer @aduffeck