]> cat aescling's git repositories - mastodon.git/commitdiff
cat aescling's git repositories / mastodon.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 8012fce)
Reset secret of web app that could have been exposed by Doorkeeper (#13688)
authorEugen Rochko <eugen@zeonfederated.com>
Sun, 10 May 2020 16:18:12 +0000 (18:18 +0200)
committerGitHub <noreply@github.com>
Sun, 10 May 2020 16:18:12 +0000 (18:18 +0200)
There are no obvious ways it could be misused, as the secret is not
really used for anything, but it is best to secure it for the future

Follow-up to #13613

db/migrate/20200510110808_reset_web_app_secret.rb [new file with mode: 0644] patch | blob
db/schema.rb patch | blob | history

diff --git a/db/migrate/20200510110808_reset_web_app_secret.rb b/db/migrate/20200510110808_reset_web_app_secret.rb
new file mode 100644 (file)
index 0000000..b274844
--- /dev/null
+++ b/db/migrate/20200510110808_reset_web_app_secret.rb
@@ -0,0 +1,15 @@
+class ResetWebAppSecret < ActiveRecord::Migration[5.2]
+  disable_ddl_transaction!
+
+  def up
+    web_app = Doorkeeper::Application.find_by(superapp: true)
+
+    return if web_app.nil?
+
+    web_app.renew_secret
+    web_app.save!
+  end
+
+  def down
+  end
+end
diff --git a/db/schema.rb b/db/schema.rb
index 08a2335ee2accaaca8be714131fa889d2ac7edbe..31f0c96bc06d5b3458f263f3f9fa1a03a239ff7d 100644 (file)
--- a/db/schema.rb
+++ b/db/schema.rb
@@ -10,7 +10,7 @@
 #
 # It's strongly recommended that you check this file into your version control system.
 
-ActiveRecord::Schema.define(version: 2020_05_08_212852) do
+ActiveRecord::Schema.define(version: 2020_05_10_110808) do
 
   # These are extensions that must be enabled in order to support this database
   enable_extension "plpgsql"
source code fur Kibicat Mastodon