Nick Meves
b4530b9292
Allow binary values in signed cookies
...
Make signedValue & Validate operate on []byte
by default and not assume/cast string. Any casting
will be done from callers.
2020-06-12 14:36:58 -07:00
Nick Meves
f9025a8f8f
Add binary native AES CFB encryption helpers.
...
These will take in []byte and not automatically
Base64 encode/decode.
2020-06-12 14:36:56 -07:00
Joel Speed
f7b28cb1d3
Improvements to Session State code ( #536 )
...
* Drop SessionStateJSON wrapper
* Use EncrpytInto/DecryptInto to reduce sessionstate
Co-authored-by: Henry Jenkins <henry@henryjenkins.name>
2020-05-30 08:53:38 +01:00
Nick Meves
7e5c8bb579
Fix secretBytes adding unintended padding ( #556 )
...
* Fix secretBytes adding unintended padding
* Add more SecretBytes test scenarios
* Add CHANGELOG entry about breaking secret padding change
* Add SecretBytes tests explanation comments
2020-05-21 19:29:45 +01:00
Nick Meves
d228d5a928
Refactor the utils package to other areas ( #538 )
...
* Refactor the utils package to other areas
Move cookieSession functions to cookie session store
& align the double implementation of SecretBytes to be
united and housed under encryption
* Remove unused Provider SessionFromCookie/CookieForSession
These implementations aren't used, these are handled in the cookie store.
* Add changelog entry for session/utils refactor
2020-05-14 10:16:35 +01:00
Nick Meves
9d626265e8
Migrate cookie signing to SHA256 from SHA1 ( #524 )
...
Also, cleanup the code & make the specific
hashing algorithm chosen a function variable.
Co-authored-by: Henry Jenkins <henry@henryjenkins.name>
2020-05-09 16:14:19 +01:00
Joel Speed
d1ef14becc
Move cookie to pkg/encryption
2019-06-15 11:33:57 +02:00
