1. 05 Dec, 2019 1 commit
  2. 03 Dec, 2019 4 commits
  3. 27 Nov, 2019 6 commits
  4. 26 Nov, 2019 16 commits
  5. 25 Nov, 2019 3 commits
    • Nick Thomas's avatar
      644d125b
    • Arturo Herrero's avatar
      Encrypt application settings with pre and post deployments · cc9a30c7
      Arturo Herrero authored
      We had concerns about the cached values on Redis with the previous two
      releases strategy:
      
      First release (this commit):
        - Create new encrypted fields in the database.
        - Start populating new encrypted fields, read the encrypted fields or
          fallback to the plaintext fields.
        - Backfill the data removing the plaintext fields to the encrypted
          fields.
      Second release:
        - Remove the virtual attribute (created in step 2).
        - Drop plaintext columns from the database (empty columns after
          step 3).
      
      We end up with a better strategy only using migration scripts in one
      release:
        - Pre-deployment migration: Add columns required for storing encrypted
          values.
        - Pre-deployment migration: Store the encrypted values in the new
          columns.
        - Post-deployment migration: Remove the old unencrypted columns
      cc9a30c7
    • Heinrich Lee Yu's avatar
      Escape namespace in label references · ad48a55c
      Heinrich Lee Yu authored
      When referencing cross-namespace labels, we append the namespace name
      to the rendered label.
      
      This MR escapes the name to prevent XSS attacks.
      ad48a55c
  6. 22 Nov, 2019 10 commits