Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

enforce password on new share #866

Merged
merged 2 commits into from Dec 29, 2021
Merged

enforce password on new share #866

merged 2 commits into from Dec 29, 2021

Conversation

ArtificialOwl
Copy link
Member

@ArtificialOwl ArtificialOwl commented Dec 16, 2021
edited

So, the hard part was to keep the clear password on the master instance while creating shares on slaves (in global scale setup)

  • When a new member is added, or a new share is created, the main instance will generate a list of Clean Passwords and their Hash. Hash will be shared to slaves to be used when generating the share token,

  • Each slave will use a different hashed password for each members and inherited members of the circle. And will returns the list of generate share,

  • Main instance get informations about the generate shares, and generate a mail per members and inherited members with the right password from the list.

  • test in large global scale env,

  • test in single instance with mass member add,

  • create password the same way that shared by mail,

  • check local settings for enforcing password, add also an option in the apps itself

@ArtificialOwl ArtificialOwl force-pushed the fix/noid/enforce-password branch 2 times, most recently from cf9576c to 3fd1b51 Compare December 20, 2021 17:10
@ArtificialOwl ArtificialOwl marked this pull request as ready for review December 20, 2021 17:34
@ArtificialOwl
Copy link
Member Author

/backport to stable23

@ArtificialOwl
Copy link
Member Author

/backport to stable22

@ArtificialOwl ArtificialOwl force-pushed the fix/noid/enforce-password branch 2 times, most recently from 0774f10 to 03a386a Compare December 28, 2021 14:04
@ArtificialOwl
enforce password on new share
2cf4806 
Signed-off-by: Maxence Lange <maxence@artificial-owl.com>
mejo-
mejo- approved these changes Dec 29, 2021
View reviewed changes
Copy link
Member

@mejo- mejo- left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

My comments are rather cosmetic - feel free to ignore them if you're in a rush.

I have to admit that I don't fully understand all aspects of these code changes yet, but as far as I got it (from your explanations and reading the code), this looks good to me 👍

lib/Listeners/Files/PreparingMemberSendMail.php Show resolved Hide resolved
lib/Service/ConfigService.php Show resolved Hide resolved
lib/Service/ConfigService.php Show resolved Hide resolved
@ArtificialOwl
comments
970dd6f 
Signed-off-by: Maxence Lange <maxence@artificial-owl.com>
@ArtificialOwl ArtificialOwl merged commit 2e38ffd into master Dec 29, 2021
@delete-merged-branch delete-merged-branch bot deleted the fix/noid/enforce-password branch December 29, 2021 12:00
This was referenced Dec 29, 2021
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mejo- mejo- mejo- approved these changes

Assignees
No one assigned
Labels
3. to review bug enhancement
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@ArtificialOwl @mejo-