minsoochoo/phorge
minsoochoo/phorge
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity
phorge/scripts
History
epriestley dd70c59465 Use OpaqueEnvelopes for all passwords in Phabricator 
Summary:
See D2991 / T1526. Two major changes here:

  - PHP just straight-up logs passwords on ldap_bind() failures. Suppress that with "@" and keep them out of DarkConsole by enabling discard mode.
  - Use PhutilOpaqueEnvelope whenever we send a password into a call stack.

Test Plan:
  - Created a new account.
  - Reset password.
  - Changed password.
  - Logged in with valid password.
  - Tried to login with bad password.
  - Changed password via accountadmin.
  - Hit various LDAP errors and made sure nothing appears in the logs.

Reviewers: vrana, btrahan

Reviewed By: vrana

CC: aran

Differential Revision: https://secure.phabricator.com/D2993
2012-07-17 12:06:33 -07:00
..
aphront
calendar
conduit
daemon phd - on start command accurately detect if daemons are running before erroring out 2012-06-20 12:36:31 -07:00
differential Provide a script to completely destroy revisions 2012-06-19 11:52:50 -07:00
drydock
fpm Fix minor issues with D2630 2012-06-06 09:12:42 -07:00
install
mail
repository Use binary_safe_diff from arcanist 2012-07-03 13:51:37 -07:00
search
setup
sql
symbols
user Use OpaqueEnvelopes for all passwords in Phabricator 2012-07-17 12:06:33 -07:00
util Use the unified markup cache for Maniphest 2012-07-11 11:40:10 -07:00
__init_script__.php Initialize translator after loading custom libraries 2012-06-21 15:57:51 -07:00
celerity_mapper.php Allow specifying custom celerity resource map 2012-06-04 18:45:03 -07:00