Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(appconfig): Automatically store "sensitive" appconfigs encrypted in the database #43114

Merged
merged 2 commits into from
Mar 7, 2024
Merged

feat(appconfig): Automatically store "sensitive" appconfigs encrypted in the database #43114

merged 2 commits into from
Mar 7, 2024

Conversation

nickvergessen
Copy link
Member

@nickvergessen nickvergessen commented Jan 25, 2024
edited
Loading

Summary

Quite some app configs contain sensitive information that we could prevent to leak, when a backup of the DB is leaked, to reduce the risk of follow up leaks/hacks.
The state of the art is to use ICrypto::encrypt() and ICrypto::decrypt() for that. While looking into it for some of the talk configs which are arrays, I thought it's a shame that we would loose all the typing as we have to json_encode the config making it strings, in order to be able to encrypt them.

So why not just encrypt all sensitive configs all the time automatically?

TODO

  • Adjust normal getter and setter
  • Check getAllValues and getDetails

Checklist

@nickvergessen nickvergessen added this to the Nextcloud 29 milestone Jan 25, 2024
@nickvergessen nickvergessen self-assigned this Jan 25, 2024
@nickvergessen nickvergessen marked this pull request as draft January 25, 2024 13:35
@nickvergessen nickvergessen changed the base branch from master to enh/noid/improve-index-on-appconfig January 25, 2024 13:35
ArtificialOwl
ArtificialOwl approved these changes Jan 25, 2024
View reviewed changes
lib/private/AppConfig.php Show resolved Hide resolved
Base automatically changed from enh/noid/improve-index-on-appconfig to master January 26, 2024 10:53
@nickvergessen nickvergessen force-pushed the bugfix/noid/automatically-encrypt-sensitive-values branch from 2ef454d to 6d20fd0 Compare January 26, 2024 21:05
@nickvergessen nickvergessen force-pushed the bugfix/noid/automatically-encrypt-sensitive-values branch from 6d20fd0 to 24607a3 Compare March 6, 2024 21:27
@nickvergessen nickvergessen force-pushed the bugfix/noid/automatically-encrypt-sensitive-values branch from e77d9e4 to 3a67080 Compare March 6, 2024 21:59
@nickvergessen nickvergessen marked this pull request as ready for review March 6, 2024 21:59
@nickvergessen nickvergessen mentioned this pull request Mar 6, 2024
Merged
@nickvergessen nickvergessen merged commit 718c845 into master Mar 7, 2024
160 of 163 checks passed
@nickvergessen nickvergessen deleted the bugfix/noid/automatically-encrypt-sensitive-values branch March 7, 2024 08:57
@joshtrichards joshtrichards mentioned this pull request Mar 7, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ArtificialOwl ArtificialOwl ArtificialOwl approved these changes

@AndyScherzinger AndyScherzinger AndyScherzinger approved these changes

@artonge artonge Awaiting requested review from artonge

@come-nc come-nc Awaiting requested review from come-nc

Assignees

@nickvergessen nickvergessen

Labels
3. to review Waiting for reviews enhancement
Projects
None yet
Milestone
Nextcloud 29
Development

Successfully merging this pull request may close these issues.
3 participants
@nickvergessen @ArtificialOwl @AndyScherzinger