github/hedgedoc
1
0
Fork 0
mirror of https://github.com/hedgedoc/hedgedoc.git synced 2024-10-22 15:12:08 -04:00
Code Issues Projects Releases Packages Wiki Activity
hedgedoc/test
History
David Mehren 3e074d1879
fix(auth): use sha-512 for auth tokens 
Bcrypt hashes are too slow to be validated on every request.
As our tokens are random and have a fixed length, it is reasonable
to use SHA-512 instead.

SHA-512 is recommended as cryptographically strong by the BSI:
https://www.bsi.bund.de/SharedDocs/Downloads/EN/BSI/Publications/TechGuidelines/TG02102/BSI-TR-02102-1.pdf?__blob=publicationFile

Fixes https://github.com/hedgedoc/hedgedoc/issues/1881

Signed-off-by: David Mehren <git@herrmehren.de>
2021-12-13 22:44:38 +01:00
..
private-api fix(auth): use sha-512 for auth tokens 2021-12-13 22:44:38 +01:00
public-api test: fix note e2e test 'fails with non-existing alias' 2021-12-02 20:41:14 +01:00
test-setup.ts TestSetup: Initialize full app and session middleware 2021-10-28 10:18:05 +02:00
tsconfig.json Move tsconfig.test.json to test directory 2021-10-21 19:51:57 +02:00
tsconfig.json.license Move tsconfig.test.json to test directory 2021-10-21 19:51:57 +02:00
utils.ts Enforce import order with prettier 2021-08-29 18:45:46 +02:00