[ckan-changes] [okfn/ckan] 6ced7c: [#1422] More secure default for the repoze secret ...

• Previous message: [ckan-changes] [okfn/ckan] 5ad5b5: [#1022] Fix cross-references in API docstrings
• Next message: [ckan-changes] [okfn/ckan] 6ced7c: [#1422] More secure default for the repoze secret ...
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

  Branch: refs/heads/1422-repoze-key
  Home:   https://github.com/okfn/ckan
  Commit: 6ced7cbffaa256ba6d1117012cdb078ecc83191d
      https://github.com/okfn/ckan/commit/6ced7cbffaa256ba6d1117012cdb078ecc83191d
  Author: amercader <amercadero at gmail.com>
  Date:   2014-01-07 (Tue, 07 Jan 2014)

  Changed paths:
    M ckan/config/middleware.py
    M ckan/config/who.ini

  Log Message:
  -----------
  [#1422] More secure default for the repoze secret key

The who.ini file has a secret key used during authentication. To make sure
users don't forget to update it we can use the beaker session secret which
is generated randomly when creating the ckan ini file.

If users define a secret in the who.ini file, this one will be used.

To do this, we use a small custom plugin that checks the secret key and
calls the core repoze plugin afterwards.

• Previous message: [ckan-changes] [okfn/ckan] 5ad5b5: [#1022] Fix cross-references in API docstrings
• Next message: [ckan-changes] [okfn/ckan] 6ced7c: [#1422] More secure default for the repoze secret ...
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]