Provide a "Secret" parameter type

Created on 8 April 2023, about 2 years ago

Problem/Motivation

It would be great to have a "Secret" parameter type, for storing sensitive information such as API passwords.

A submitted secret needs to be securely encoded using a secure crypt algorithm. A salt should be mandatory and provided either by Settings (settings.php) or alternatively by an environment variable. When implementing a service for that, it could just directly support both. The "Secret" parameter type must only be available when the salt is available.

Steps to reproduce

Proposed resolution

Remaining tasks

Consider either a symmetric (one key for encoding and decoding) or asymmetric (two keys, one for encoding, once for decoding) way of encryption.

User interface changes

API changes

Data model changes

✨ Feature request

Status

Active

Version

1.0

Component

Miscellaneous

Created by

🇩🇪Germany mxh Offenburg

Live updates comments and jobs are added and updated live.

Merge Requests

!9Provide a "Secret" parameter type
Merged
🇩🇪Germany mxh
updated 5 months ago

Comments & Activities

Issue created by @mxh
Comment about 2 years ago →
🇩🇪Germany mxh Offenburg
Merge request !9Resolve #3353017 "Provide a secret" → (Merged) created by mxh
Comment 5 months ago →
System Message

mxh → committed 10caa999 on 1.0.x
Resolve #3353017 "Provide a secret"
Comment 5 months ago →
🇩🇪Germany mxh Offenburg
Comment 4 months ago →
System Message
Automatically closed - issue fixed for 2 weeks with no activity.

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024