django-cryptography icon indicating copy to clipboard operation
django-cryptography copied to clipboard

Published 20 hours ago verified publisher icon georgemarshall

SECRET_KEY is still used for some calculations even if CRYPTOGRAPHY_KEY is set

Open glennmatthews opened this issue 3 years ago • 4 comments

Per the documentation,

CRYPTOGRAPHY_KEY Default: None When value is None a key will be derived from SECRET_KEY. Otherwise the value will be used for the key.

This documentation is incorrect, or at least incomplete. I can confirm that even when CRYPTOGRAPHY_KEY is set, some calculations still use SECRET_KEY. This can be demonstrated by populating some encrypted fields, then changing SECRET_KEY - a BadSignature error will be reported on trying to access the fields, but changing SECRET_KEY back to its old value will restore normal operation.

glennmatthews avatar Jun 14 '21 21:06 glennmatthews

In other words, once you begin using this library, you may never change SECRET_KEY again, even if you're defining CRYPTOGRAPHY_KEY as the documentation recommends.

glennmatthews avatar Jun 14 '21 21:06 glennmatthews

Duplicate of #37?

genericmoniker avatar Jun 29 '21 17:06 genericmoniker

Faced the same issue. Steps to reproduce:

  1. Start new project, install django-cryptography, set both SECRET_KEY and CRYPTOGRAPHY_KEY
  2. Add at least 1 instance of model with encrypted field
  3. Change value of SECRET_KEY

Expected result: encrypted fields may be decrypted as CRYPTOGRAPHY_KEY wasn't changed Actual result: BadSignature because encryption key changed.

ron8mcr avatar Jul 20 '22 14:07 ron8mcr