-
- Downloads
[master] Persist only SHA digest of PersonalAccessToken#token
Showing
- app/models/concerns/token_authenticatable.rb 24 additions, 31 deletionsapp/models/concerns/token_authenticatable.rb
- app/models/concerns/token_authenticatable_strategies/base.rb 69 additions, 0 deletionsapp/models/concerns/token_authenticatable_strategies/base.rb
- app/models/concerns/token_authenticatable_strategies/digest.rb 50 additions, 0 deletions...odels/concerns/token_authenticatable_strategies/digest.rb
- app/models/concerns/token_authenticatable_strategies/insecure.rb 23 additions, 0 deletions...els/concerns/token_authenticatable_strategies/insecure.rb
- app/models/personal_access_token.rb 11 additions, 5 deletionsapp/models/personal_access_token.rb
- app/models/user.rb 1 addition, 10 deletionsapp/models/user.rb
- changelogs/unreleased/security-51113-hash_personal_access_tokens.yml 5 additions, 0 deletions...unreleased/security-51113-hash_personal_access_tokens.yml
- db/migrate/20180910153412_add_token_digest_to_personal_access_tokens.rb 19 additions, 0 deletions...80910153412_add_token_digest_to_personal_access_tokens.rb
- db/migrate/20180910153413_add_index_to_token_digest_on_personal_access_tokens.rb 17 additions, 0 deletions...13_add_index_to_token_digest_on_personal_access_tokens.rb
- db/post_migrate/20180913142237_schedule_digest_personal_access_tokens.rb 28 additions, 0 deletions.../20180913142237_schedule_digest_personal_access_tokens.rb
- db/schema.rb 3 additions, 1 deletiondb/schema.rb
- lib/gitlab/auth/user_auth_finders.rb 1 addition, 3 deletionslib/gitlab/auth/user_auth_finders.rb
- lib/gitlab/background_migration/digest_column.rb 25 additions, 0 deletionslib/gitlab/background_migration/digest_column.rb
- lib/gitlab/crypto_helper.rb 30 additions, 0 deletionslib/gitlab/crypto_helper.rb
- lib/tasks/tokens.rake 5 additions, 9 deletionslib/tasks/tokens.rake
- spec/lib/gitlab/background_migration/digest_column_spec.rb 46 additions, 0 deletionsspec/lib/gitlab/background_migration/digest_column_spec.rb
- spec/migrations/schedule_digest_personal_access_tokens_spec.rb 46 additions, 0 deletions...migrations/schedule_digest_personal_access_tokens_spec.rb
- spec/models/concerns/token_authenticatable_spec.rb 266 additions, 6 deletionsspec/models/concerns/token_authenticatable_spec.rb
- spec/models/personal_access_token_spec.rb 23 additions, 5 deletionsspec/models/personal_access_token_spec.rb
- spec/models/user_spec.rb 8 additions, 0 deletionsspec/models/user_spec.rb
Loading