manyfold icon indicating copy to clipboard operation
manyfold copied to clipboard
verified publisher icon manyfold3d

S3 keys and secrets are stored plaintext in the database

Open Floppy opened this issue 1 year ago • 1 comments

These should be more secure. Use https://guides.rubyonrails.org/v7.2/active_record_encryption.html

Floppy avatar Jan 30 '25 16:01 Floppy

I'm looking into a way we can enable Rails field encryption optionally; otherwise we'll end up breaking everyone's installations if we force enable it. Problem is some of it is configuration, and some is done in code. Trying to work out how to enable it in the code if the config is present.

Floppy avatar Apr 15 '25 22:04 Floppy