New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Encryption & Signature Key rotation for Anti-CSRF #234

Closed
jeevatkm opened this Issue Dec 17, 2018 · 1 comment

Comments

@jeevatkm
Copy link
Member

jeevatkm commented Dec 17, 2018

The goal is provide a configurable way to rotate Encryption and Signature Key for Anti-CSRF.

In a real world usage as part of Security Compliance in the organization requires to Rotate keys in a certain interval to reduce the attack vector on their applications.

As you know aah is security aware framework and will provide every possible way to make aah application is more secure.

  • Implementation
  • Documentation

@jeevatkm jeevatkm added this to Backlog in aah Roadmap Dec 17, 2018

@jeevatkm jeevatkm changed the title Encryption and Signature Key rotation for Anti-CSRF Encryption & Signature Key rotation for Anti-CSRF Dec 17, 2018

@jeevatkm jeevatkm moved this from Backlog to v0.13.0 - Iteration in aah Roadmap Jan 2, 2019

@jeevatkm jeevatkm added this to the v0.13.0 Milestone milestone Jan 2, 2019

@jeevatkm jeevatkm self-assigned this Jan 9, 2019

@jeevatkm jeevatkm moved this from v0.13.0 - Iteration to v0.13.0 - In Progress in aah Roadmap Jan 9, 2019

jeevatkm added a commit that referenced this issue Jan 12, 2019

#233 session cookie key rotation, #234 anti-csrf key rotation and #242
…samesite cookie attribute support

jeevatkm added a commit that referenced this issue Jan 12, 2019

sign, encryption key rotation #233 #234 #242
- session cookie
- anti-csrf cookie
- samesite cookie attribute support

jeevatkm added a commit that referenced this issue Jan 13, 2019

sign, encryption key rotation (#243)
- #233 session cookie
- #234 anti-csrf cookie
- #242 samesite cookie attribute support

jeevatkm added a commit to go-aah/docs that referenced this issue Jan 15, 2019

@jeevatkm

This comment has been minimized.

Copy link
Member

jeevatkm commented Jan 15, 2019

Its done 😄

@jeevatkm jeevatkm closed this Jan 15, 2019

aah Roadmap automation moved this from v0.13.0 - In Progress to v0.13.0 - Completed Jan 15, 2019

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment