Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

stable

Clone or download

Read-only

Harden the Tuleap cryptography API

Download Browse

This contribution makes sure that: * functions used inside the API cannot be overridden * parameters are of the expected type This is part of story #10606: encrypt bugzilla credentials (API key) before storing in the DB Change-Id: I369c2276069bbcebf8dc3e8c059888d400f9a97d

+42 −17
Thomas Gerbet (tgerbet) 2017-09-28 14:58
Thomas Gerbet (tgerbet) 2017-10-03 13:05
ed8f6bc3ed128add28eca9fb6a4acb0fef17fe13
99bf8f9b81c76bfa2c85d23a4881e3d9b4f821e7
git #tuleap/stable/ed8f6bc3ed128add28eca9fb6a4acb0fef17fe13

Modified Files

Side by side diff
Inline diff
Name
M src/common/Cryptography/ConcealedString.php +3 −0 Go to diff View file
M src/common/Cryptography/KeyFactory.php +14 −10 Go to diff View file
M src/common/Cryptography/Symmetric/EncryptionKey.php +1 −1 Go to diff View file
M src/common/Cryptography/Symmetric/SymmetricCrypto.php +10 −6 Go to diff View file
M tests/simpletest/common/Cryptography/ConcealedStringTest.php +6 −0 Go to diff View file
M tests/simpletest/common/Cryptography/Symmetric/SymmetricCryptoTest.php +8 −0 Go to diff View file