Add recognizable prefix to Pinniped secrets (auth codes, refresh tokens, access tokens) #688
Labels
enhancement
New feature or request
estimate/M
Estimated effort/complexity/risk is medium
state/accepted
All done!
stub
Stub issues that are lacking proper descriptions
Something along the lines of https://github.blog/2021-04-05-behind-githubs-new-authentication-token-formats/. The benefit is if you encounter one of these secrets out of context, it's easy to figure out what you're looking at. We could also add a short checksum as GH did. We probably can't do anything like this for JWT's, but they are somewhat self-describing anyway.
This feature would allow enterprises to reliably scan code repositories for any accidentally-committed tokens.
Notes:
The text was updated successfully, but these errors were encountered: