librelist archives

« back to archive

Forcing the secret_key

Forcing the secret_key

From:
Loic d'Anterroches
Date:
2012-02-23 @ 12:49
Hello,

I found that several times I made a typo in the configuration file of my
websites and wrote either private_key or secrect_Key instead of
secret_key. As the secret_key configuration item is critical to the
security of a Photon based web application, I decided to add a check at
configuration load time. The check is of course done only once at the
Photon startup and not at each request, this has no performance impact
at all.

This message is more to tell you: check that you have a secret_key and
that you have correctly generated a random key with:

$ hnu makekey

Have a nice day,
loïc

PS: Not yet pushed in the repository, this will be done this afternoon.