Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We鈥檒l occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Improve how secrets and stored and used #907

Merged
merged 4 commits into from Jul 1, 2020
Merged

Improve how secrets and stored and used #907

merged 4 commits into from Jul 1, 2020

Conversation

msfjarvis
Copy link
Member

@msfjarvis msfjarvis commented Jul 1, 2020
edited

馃摙 Type of change

  • Bugfix
  • New feature
  • Enhancement
  • Refactoring
  • Dependency updates

馃摐 Description

Re-encrypts in-tree secrets to resolve the warning about use of deprecated key derivations, adds a script
to encrypt new ones, and simplifies the decryption script to make it simpler to add more.

馃挕 Motivation and Context

I made these changes to facilitate inclusion of fastlane support but that's on hold at the moment so I've extracted the general improvements from the branch.

馃挌 How did you test it?

Decrypted the secrets with the new script and verified they match the source files.

馃摑 Checklist

  • I formatted the code with the IDE's reformat action (Ctrl + Shift + L/Cmd + Shift + L)
  • I reviewed submitted code
  • I added a CHANGELOG entry if applicable

馃敭 Next steps

馃摳 Screenshots / GIFs

@msfjarvis
release: add script to encrypt secrets
2273828 
Signed-off-by: Harsh Shandilya <me@msfjarvis.dev>
@msfjarvis
release: re-encrypt secrets with updated script
d98cf04 
Signed-off-by: Harsh Shandilya <me@msfjarvis.dev>
@msfjarvis
release/signing-setup: simplify addition of secrets
0703736 
Signed-off-by: Harsh Shandilya <me@msfjarvis.dev>
@msfjarvis msfjarvis added this to the 1.10.0 milestone Jul 1, 2020
@msfjarvis msfjarvis added the ready label Jul 1, 2020
@msfjarvis
release/signing-setup: improve error message
4edf346 
Signed-off-by: Harsh Shandilya <me@msfjarvis.dev>
fmeum
fmeum approved these changes Jul 1, 2020
View reviewed changes
Copy link
Member

@fmeum fmeum left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks sane, but I don't know this stuff well enough to detect brokenness.

@msfjarvis msfjarvis merged commit 83ba0a3 into android-password-store:develop Jul 1, 2020
@msfjarvis msfjarvis deleted the secrets-cleanup branch July 1, 2020 08:59
msfjarvis added a commit that referenced this pull request Jul 1, 2020
@msfjarvis
Merge branch 'develop' into feature/autofill_sms_otp
8bcc2da 
* develop:
  Scroll to files and enter folders when created (#909)
  Run a treewide reformat (#908)
  Improve how secrets and stored and used (#907)
  Improve and refactor Autofill heuristics (#905)
  Use PreferenceKeys file to manage SharedPreferences keys. (#891)
  Bump version
  Prepare release 1.9.2
  update changelog
  Workaround to prevent crash on first run (#898)
  build: bump version
  Prepare release 1.9.1
  Backport Actions fixes (#894)
  Remove API 30 from pull request test matrix (#879)
  CHANGELOG: reword to better clarify fixes
  Prevent cached passwords from being wiped (#884)
  Use remembered credential even if it is empty (#880)
  Reset SSH passphrase after SSH key import (#885)
  Add relnotes for #871 (#872)
  Add org.gnu.icecat as a trusted multi-origin browser (#871)
msfjarvis added a commit to fmeum/Android-Password-Store that referenced this pull request Jul 1, 2020
@msfjarvis
Merge branch 'develop' into fhenneke_multiple_ssh
41f92b1 
* develop: (62 commits)
  Scroll to files and enter folders when created (android-password-store#909)
  Run a treewide reformat (android-password-store#908)
  Improve how secrets and stored and used (android-password-store#907)
  Improve and refactor Autofill heuristics (android-password-store#905)
  Use PreferenceKeys file to manage SharedPreferences keys. (android-password-store#891)
  Revert "Support directly importing secrets" (android-password-store#904)
  Allow importing TOTP configuration through QR codes (android-password-store#903)
  Bump version
  Prepare release 1.9.2
  update changelog
  Workaround to prevent crash on first run (android-password-store#898)
  Workaround to prevent crash on first run (android-password-store#898)
  Offer TOTP Autofill for OTP fields (android-password-store#899)
  Merge SshKeyGenFragment into its activity (android-password-store#897)
  Reintroduce TOTP support (android-password-store#890)
  Sync with release branch (android-password-store#896)
  build: bump version
  Prepare release 1.9.1
  Backport Actions fixes (android-password-store#894)
  Rework GitHub Actions (android-password-store#893)
  ...
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@fmeum fmeum fmeum approved these changes

@Skrilltrax Skrilltrax Awaiting requested review from Skrilltrax

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
1.10.0
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@msfjarvis @fmeum