Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

De-hardcode security keys #14

Closed
LordTermor opened this issue Mar 3, 2024 · 0 comments · Fixed by #16
Closed

De-hardcode security keys #14

LordTermor opened this issue Mar 3, 2024 · 0 comments · Fixed by #16
Assignees
@LordTermor
Labels
bug Something isn't working Daemon Changes related to the backend

Comments

@LordTermor
Copy link
Collaborator

There are some places in code where hardcoded security keys are used.

bxt/daemon/presentation/web-filters/JwtFilter.cpp

Line 35 in 93e2109

.allow_algorithm(jwt::algorithm::hs256 {"secret"})

bxt/daemon/presentation/cli-controllers/DeploymentController.h

Line 49 in 93e2109

std::string m_key = "KEY0";

bxt/daemon/presentation/web-controllers/AuthController.cpp

Line 45 in 93e2109

jwt::algorithm::hs256 {"secret"});

bxt/daemon/presentation/web-controllers/AuthController.cpp

Line 68 in 93e2109

.allow_algorithm(jwt::algorithm::hs256 {"secret"})

@LordTermor LordTermor added bug Something isn't working Daemon Changes related to the backend labels Mar 3, 2024
@LordTermor LordTermor added this to the Alpha milestone Mar 3, 2024
@LordTermor LordTermor self-assigned this Mar 3, 2024
@LordTermor LordTermor linked a pull request Mar 21, 2024 that will close this issue
Make more values configurable #16
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@LordTermor LordTermor

Labels
bug Something isn't working Daemon Changes related to the backend
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Make more values configurable LordTermor/bxt
1 participant
@LordTermor