Mercurial > p > roundup > code
view doc/sc.txt @ 7809:be6cb2e0d471
feat: add support for rotating jwt keys
This allows jwt_secret to have multiple ',' separated secrets. The
first/leftmost should be used to sign new JWTs. All of them are used
(starting from left/newest) to try to verify a JWT.
If the first secret is < 32 chars in length JWTs are disabled. If any
of the other secrets are < 32 chars, the configuration code causes the
software to exit. This prevents insecure (too short) secrets from
being used.
Updated doc examples and tests.
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Thu, 14 Mar 2024 19:04:19 -0400 |
| parents | 2ab234484708 |
| children | 394f72021dad |
line wrap: on
line source
.. meta:: :description: Original documentation of the Roundup Issue tracker. Includes historic Software Carpentry submissions and a short paper. =================================== Software Carpentry and Short Papers =================================== These papers are the original artifacts of Roundup. They can't be included easily in the table of contents for the documentation, so they are referenced here. All of these were written by Ka-Ping Yee, the original architect of Roundup.. A few of the pages have been updated to correct links. However you may still have to use the `wayback machine <https://wayback.archive.org>`_ to access some of the links on these pages. The papers in chronological order are: * `See a short paper explaining Roundup <roundup_short_paper.html>`_ * `See the original overview document for Roundup submitted to the Software Carpentry competition <original_overview.html>`_ * `See the original specification document for Roundup submitted to the Software Carpentry competition <spec.html>`_