1. 26 Nov, 2019 10 commits
  2. 25 Nov, 2019 3 commits
    • Nick Thomas's avatar
      644d125b
    • Arturo Herrero's avatar
      Encrypt application settings with pre and post deployments · cc9a30c7
      Arturo Herrero authored
      We had concerns about the cached values on Redis with the previous two
      releases strategy:
      
      First release (this commit):
        - Create new encrypted fields in the database.
        - Start populating new encrypted fields, read the encrypted fields or
          fallback to the plaintext fields.
        - Backfill the data removing the plaintext fields to the encrypted
          fields.
      Second release:
        - Remove the virtual attribute (created in step 2).
        - Drop plaintext columns from the database (empty columns after
          step 3).
      
      We end up with a better strategy only using migration scripts in one
      release:
        - Pre-deployment migration: Add columns required for storing encrypted
          values.
        - Pre-deployment migration: Store the encrypted values in the new
          columns.
        - Post-deployment migration: Remove the old unencrypted columns
      cc9a30c7
    • Heinrich Lee Yu's avatar
      Escape namespace in label references · ad48a55c
      Heinrich Lee Yu authored
      When referencing cross-namespace labels, we append the namespace name
      to the rendered label.
      
      This MR escapes the name to prevent XSS attacks.
      ad48a55c
  3. 22 Nov, 2019 10 commits
  4. 21 Nov, 2019 2 commits
    • Hordur Freyr Yngvason's avatar
      8b819da9
    • Arturo Herrero's avatar
      Encrypt application setting tokens · 03ae7517
      Arturo Herrero authored
      This is the plan to encrypt the plaintext tokens:
      
      First release (this commit):
        1. Create new encrypted fields in the database.
        2. Start populating new encrypted fields, read the encrypted fields or
           fallback to the plaintext fields.
        3. Backfill the data removing the plaintext fields to the encrypted fields.
      
      Second release:
        4. Remove the virtual attribute (created in step 2).
        5. Drop plaintext columns from the database (empty columns after step 3).
      03ae7517
  5. 20 Nov, 2019 7 commits
  6. 19 Nov, 2019 3 commits
  7. 18 Nov, 2019 2 commits
  8. 15 Nov, 2019 1 commit
  9. 04 Nov, 2019 2 commits