DGNum/demarches-normaliennes
13
1
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity

chore: disable cookies rotation until we enforce SHA256 digests

Browse source
This commit is contained in:
Colin Darie 2023-05-02 14:21:41 +02:00
parent ae88c1de6b
commit 2144c69e22
No known key found for this signature in database
GPG key ID: 4FB865FDBCA4BCC4
1 changed files with 16 additions and 12 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

28
config/initializers/cookie_rotator.rb
View file

@ -1,14 +1,18 @@
Rails.application.config.after_initialize do # TODO: Enable cookies rotation when new SHA256 will be enforced
Rails.application.config.action_dispatch.cookies_rotations.tap do |cookies| # See new_framework_defaults_7.0.rb
salt = Rails.application.config.action_dispatch.authenticated_encrypted_cookie_salt # key_generator_hash_digest_class = OpenSSL::Digest::SHA256 will be
secret_key_base = Rails.application.secret_key_base #
# Rails.application.config.after_initialize do
# Rails.application.config.action_dispatch.cookies_rotations.tap do |cookies|
# salt = Rails.application.config.action_dispatch.authenticated_encrypted_cookie_salt
# secret_key_base = Rails.application.secret_key_base
key_generator = ActiveSupport::KeyGenerator.new( # key_generator = ActiveSupport::KeyGenerator.new(
secret_key_base, iterations: 1000, hash_digest_class: OpenSSL::Digest::SHA1 # secret_key_base, iterations: 1000, hash_digest_class: OpenSSL::Digest::SHA1
) # )
key_len = ActiveSupport::MessageEncryptor.key_len # key_len = ActiveSupport::MessageEncryptor.key_len
secret = key_generator.generate_key(salt, key_len) # secret = key_generator.generate_key(salt, key_len)
cookies.rotate :encrypted, secret # cookies.rotate :encrypted, secret
end # end
end # end