#30360: Support rotation of secret keys
-------------------------------+-----------------------------------------
Reporter: Andreas Pelme | Owner: Andreas Pelme
Type: Uncategorized | Status: assigned
Component: Core (Other) | Version: 2.2
Severity: Normal | Resolution:
Keywords: | Triage Stage: Unreviewed
Has patch: 1 | Needs documentation: 1
Needs tests: 1 | Patch needs improvement: 1
Easy pickings: 0 | UI/UX: 0
-------------------------------+-----------------------------------------
Description changed by Andreas Pelme:
Old description:
> Having the possibility to use the secret key from other sources than
> settings and being able to verify signatures with old secret keys would
> improve security in a number of ways.
>
> See [https://groups.google.com/forum/#!msg/django-developers/jg-
> eu3HtLHI/V_rbzYKfAQAJ the discussion in django-developers] for a longer
> explanation and discussion.
New description:
Having the possibility to rotate the secret key would be nice.
See [https://groups.google.com/forum/#!msg/django-developers/jg-
eu3HtLHI/V_rbzYKfAQAJ the discussion in django-developers] for a longer
explanation and discussion.
--
--
Ticket URL: <https://code.djangoproject.com/ticket/30360#comment:3>
Django <https://code.djangoproject.com/>
The Web framework for perfectionists with deadlines.
--
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to django-updates+unsubscr...@googlegroups.com.
To post to this group, send email to django-updates@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/django-updates/063.926c64c7a22bd2081103a16afd6b10c0%40djangoproject.com.
For more options, visit https://groups.google.com/d/optout.
