OptimusX
/
OneAuth
mirror of https://github.com/veypi/OneAuth.git
3
0
Fork 0
Code Issues Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
v3
v2
v1.0.0
v0.1.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '241d22dba6'
${ noResults }
OneAuth/api/oauth/providers
History
veypi 69efc4284b fix(api/oauth): encrypt ClientSecret in database 
Encrypt OAuth Provider ClientSecret before storing in database to prevent
sensitive credential exposure in case of database breach.

- Encrypt ClientSecret on create using cfg.Config.Key.Encrypt()
- Encrypt ClientSecret on update when provided
- Decrypt ClientSecret before use in OAuth token exchange
- Add AES-GCM encryption/decryption functions to crypto package
- Gracefully handle legacy plaintext secrets during transition
 		1 week ago
..
create.go fix(api/oauth): encrypt ClientSecret in database 1 week ago
del.go refactor(auth): 重构认证系统,支持多种验证方式和 OAuth 提供商管理 1 week ago
get.go refactor(auth): 重构认证系统,支持多种验证方式和 OAuth 提供商管理 1 week ago
init.go refactor(auth): 重构认证系统,支持多种验证方式和 OAuth 提供商管理 1 week ago
list.go refactor(auth): 重构认证系统,支持多种验证方式和 OAuth 提供商管理 1 week ago
templates.go refactor(auth): 重构认证系统,支持多种验证方式和 OAuth 提供商管理 1 week ago
update.go fix(api/oauth): encrypt ClientSecret in database 1 week ago