Mercurial > p > roundup > code
view share/roundup/templates/devel/html/help.css @ 7809:be6cb2e0d471
feat: add support for rotating jwt keys
This allows jwt_secret to have multiple ',' separated secrets. The
first/leftmost should be used to sign new JWTs. All of them are used
(starting from left/newest) to try to verify a JWT.
If the first secret is < 32 chars in length JWTs are disabled. If any
of the other secrets are < 32 chars, the configuration code causes the
software to exit. This prevents insecure (too short) secrets from
being used.
Updated doc examples and tests.
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Thu, 14 Mar 2024 19:04:19 -0400 |
| parents | b419f29b1e2f |
| children |
line wrap: on
line source
@import url(style.css); body { padding: 0;} body > .header, body > .footer { margin: 0; } body .content { width: auto;} .header h1 { font-size: 110%; } table.classhelp th { border-top: 1px solid #afafaf; border-bottom: 1px solid #afafaf; empty-cells: show; text-align: left; vertical-align: middle; white-space: nowrap; } table.classhelp td { border-bottom: 1px solid #efefef; empty-cells: show; text-align: left; vertical-align: middle; white-space: nowrap; }