Deleting a branch is permanent. It CANNOT be undone. Continue?
Labels
Milestone
No Milestone
Assignees
No Assignees
1 Participants
Due Date
No due date set.
Dependencies
This issue currently doesn't have any dependencies.
Loading…
There is no content yet.
Delete Branch '%!s(MISSING)'
This applies to both session tokens and password reset tokens (and possibly more).
Currently, we just store a token and give the user the same token either via a cookie or through email. Anyone with this token can masquerade as the user for the purpose of whatever the token was generated for.
A storage scheme is available where we do not need to actually store the complete token ourselves to authenticate them, leaving one less source of token leakage. Instead, we should:
This way we can still verify users by the token they have, but if we leak the franken-token-hash accidentally, nobody can use it to masquerade as the user.