Hash authentication tokens before storing in the database.

2017-09-21 13:04:07 +02:00
parent 389413ab8a
commit c57aefd48b
8 changed files with 86 additions and 24 deletions
--- a/pillar/config.py
+++ b/pillar/config.py
@@ -24,6 +24,9 @@ DEBUG = False
 # python3 -c 'import secrets; print(secrets.token_urlsafe(128))'
 SECRET_KEY = ''

+# Authentication token hashing key. If empty falls back to UTF8-encoded SECRET_KEY with a warning.
+AUTH_TOKEN_HMAC_KEY = b''
+
 # Authentication settings
 BLENDER_ID_ENDPOINT = 'http://blender_id:8000/'