Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow for rotating keys on signed (and also possibly encrypted) cookies #158

Open
Fishrock123 opened this issue Jul 15, 2020 · 1 comment
Open

Allow for rotating keys on signed (and also possibly encrypted) cookies #158

Fishrock123 opened this issue Jul 15, 2020 · 1 comment

Comments

@Fishrock123
Copy link

The background here is from keygrip which Express.js uses for it's cookie signing.

The idea is that the end user can rotate their keys, adding a new one which signs all new cookies while still allowing older cookies to be verified for a (probably lengthy) time.
Fishrock123 added a commit to Fishrock123/cookie-rs that referenced this issue Jul 21, 2020
@Fishrock123
SignedJar: add key-rotatable version
cad43aa 
Implements rwf2#158

Maybe this should be the default (`::new()`) in the future.
@Fishrock123 Fishrock123 mentioned this issue Jul 21, 2020
Closed
Fishrock123 added a commit to Fishrock123/cookie-rs that referenced this issue Jul 23, 2020
@Fishrock123
SignedJar: add key-rotatable version
4f6a244 
Implements rwf2#158

Maybe this should be the default (`::new()`) in the future.
@SergioBenitez
Copy link
Member

See my comments on #161.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Fishrock123 @SergioBenitez