Mercurial > p > roundup > code
view website/www/contents.txt @ 7809:be6cb2e0d471
feat: add support for rotating jwt keys
This allows jwt_secret to have multiple ',' separated secrets. The
first/leftmost should be used to sign new JWTs. All of them are used
(starting from left/newest) to try to verify a JWT.
If the first secret is < 32 chars in length JWTs are disabled. If any
of the other secrets are < 32 chars, the configuration code causes the
software to exit. This prevents insecure (too short) secrets from
being used.
Updated doc examples and tests.
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Thu, 14 Mar 2024 19:04:19 -0400 |
| parents | c2fd254c9257 |
| children | 6d4b5005abf2 |
line wrap: on
line source
.. Roundup documentation master file, created by sphinx-quickstart on Tue Jan 20 17:33:20 2009. You can adapt this file completely to your liking, but it should at least contain the root `toctree` directive. Sitemap ======= Contents: .. toctree:: :maxdepth: 2 Home <index> Download <https://pypi.org/project/roundup/> docs Issues <https://issues.roundup-tracker.org> contact Wiki <https://wiki.roundup-tracker.org> code .. toctree:: :hidden: docs/announcement