platypush/platypush/user at d95baac74eeaf35141bf9c82560b45ce3942b099

History

Fabio Manganiello d95baac74e Add user credentials on the encrypted JWT token. Adding the credentials ensures that tokens associated to non-existing users, or users with an invalid password, won't be accepted, even if they were correctly encrypted using the host's keypair. This adds an additional layer of security in case the host's keypair gets compromised.	2022-11-21 13:16:09 +01:00
..
__init__.py	Add user credentials on the encrypted JWT token.	2022-11-21 13:16:09 +01:00

Fabio Manganiello d95baac74e Add user credentials on the encrypted JWT token.

Adding the credentials ensures that tokens associated to non-existing
users, or users with an invalid password, won't be accepted, even if
they were correctly encrypted using the host's keypair.

This adds an additional layer of security in case the host's keypair
gets compromised.

2022-11-21 13:16:09 +01:00

__init__.py

Add user credentials on the encrypted JWT token.

2022-11-21 13:16:09 +01:00