Opened 6 years ago
Last modified 3 years ago
#30360 closed New feature
Pluggable secret key backend — at Initial Version
| Reported by: | Andreas Pelme | Owned by: | Andreas Pelme |
|---|---|---|---|
| Component: | Core (Other) | Version: | dev |
| Severity: | Normal | Keywords: | |
| Cc: | Ryan Hiebert | Triage Stage: | Ready for checkin |
| Has patch: | yes | Needs documentation: | no |
| Needs tests: | no | Patch needs improvement: | no |
| Easy pickings: | no | UI/UX: | no |
Description
Having the possibility to use the secret key from other sources than settings and being able to verify signatures with old secret keys would improve security in a number of ways.
See the discussion in django-developers for a longer explanation and discussion.
Note:
See TracTickets
for help on using tickets.