On 10 Nov 2018, at 13:29, Adam Johnson <m...@adamj.eu> wrote: > > Hi Andreas > > I like your proposal, moving to a backend is an elegant way of solving both > the immediate problem and opening up the other possibilities you mentioned.
Thanks Adam, I am glad you like the proposal. :) > I think it would also be nice to have an "out of the box" way of rotating the > key, without needing to implement a custom backend. Perhaps a second setting > OLD_SECRET_KEYS that may contain a list of old keys that are returned for > verification too? Or we could allow SECRET_KEY to be a list/tuple, and if so, > sign with the first and verify with all of them. Agreed, I will add something like that then! :) Cheers, Andreas -- You received this message because you are subscribed to the Google Groups "Django developers (Contributions to Django itself)" group. To unsubscribe from this group and stop receiving emails from it, send an email to django-developers+unsubscr...@googlegroups.com. To post to this group, send email to firstname.lastname@example.org. Visit this group at https://groups.google.com/group/django-developers. To view this discussion on the web visit https://groups.google.com/d/msgid/django-developers/A16A11DF-1439-46EF-BF0D-85C483F53608%40pelme.se. For more options, visit https://groups.google.com/d/optout.