HomePhabricator
Diffusion Phabricator ab7d89edc8ad

Use better secrets in generating account tokens
ab7d89edc8ad
Actions

Description

Use better secrets in generating account tokens

Summary:
When we generate account tokens for CSRF keys and email verification, one of the inputs we use is the user's password hash. Users won't always have a password hash, so this is a weak input to key generation. This also couples CSRF weirdly with auth concerns.

Instead, give users a dedicated secret for use in token generation which is used only for this purpose.

Test Plan:

  • Ran upgrade scripts.
  • Verified all users got new secrets.
  • Created a new user.
  • Verified they got a secret.
  • Submitted CSRF'd forms, they worked.
  • Adjusted the CSRF token and submitted CSRF'd forms, verified they don't work.

Reviewers: btrahan

Reviewed By: btrahan

Subscribers: epriestley

Differential Revision: https://secure.phabricator.com/D8748

Details

Provenance
epriestleyAuthored on
epriestleyPushed on Apr 10 2014, 6:45 PM
Reviewer
btrahan
Differential Revision
D8748: Use better secrets in generating account tokens
Parents
rP3018a5eb0912: Better mobile display of ObjectItemView
Branches
Unknown
Tags
Unknown

Event Timeline

Changes (3)

PathSize
resources/
sql/
autopatches/
src/
applications/
people/
storage/

rPab7d89edc8ad

View Options

resources/sql/autopatches/20140410.accountsecret.1.sql

Loading...
View Options

resources/sql/autopatches/20140410.accountsecret.2.php

Loading...
View Options

src/applications/people/storage/PhabricatorUser.php

Loading...
Phabricator ยท Built by Phacility