Skip to content

Add a secret to the AccessToken #389

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
arteymix wants to merge 1 commit into
base: development
Choose a base branch
from
Draft

Add a secret to the AccessToken #389

arteymix wants to merge 1 commit into from

Conversation

@arteymix
Copy link
Member

@arteymix arteymix commented Aug 25, 2023
edited
Loading

The bearer authentication now accepts a {token}:{secret} syntax similar to basic authentication. The secret part is optional to be backward-compatible with existing access tokens.

  • adjust token-based authentication to accept an optional secret
  • add some tests for pre-1.6 tokens without secrets
  • add a warning that access token without secret should be revoked and regenerated
  • display the secret once when the access token is created
  • display the secret once when a service account is created (it get an initial access token)

@arteymix arteymix added this to the 1.6.0 milestone Aug 25, 2023
@arteymix arteymix mentioned this pull request Aug 25, 2023
Open
@arteymix arteymix force-pushed the feature-secret-for-access-token branch from c819e0a to 43c0cd0 Compare August 26, 2023 08:01
@arteymix arteymix force-pushed the feature-secret-for-access-token branch from 43c0cd0 to 3e6ba6f Compare August 26, 2023 08:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

1.6.0

Development

Successfully merging this pull request may close these issues.

2 participants

@arteymix