consul/nairobi
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Move authentication_logs secret out of security section

Browse Source 
As this secret is currently not programmed to be customisable for each Tenant,
we take it out of the security section. The reason is that so far everything inside this security section can be overwritten per tenant. With this change we are trying
to prevent anyone from trying to overwrite it on a per Tenant basis, as it would have
no effect.
This commit is contained in:
taitus
2023-11-22 16:36:27 +01:00
parent a9fa73be83
commit 76128494aa
2 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
config/application.rb
View File

@@ -139,7 +139,7 @@ module Consul
config.paths["app/views"].unshift(Rails.root.join("app", "views", "custom")) config.paths["app/views"].unshift(Rails.root.join("app", "views", "custom"))
# Set to true to enable user authentication log # Set to true to enable user authentication log
config.authentication_logs = Rails.application.secrets.dig(:security, :authentication_logs) || false config.authentication_logs = Rails.application.secrets.authentication_logs || false
# Set to true to enable devise user lockable feature # Set to true to enable devise user lockable feature
config.devise_lockable = Rails.application.secrets.devise_lockable config.devise_lockable = Rails.application.secrets.devise_lockable

8
config/secrets.yml.example
View File

@@ -18,10 +18,10 @@ http_basic_auth: &http_basic_auth
development: development:
http_basic_username: "dev" http_basic_username: "dev"
http_basic_password: "pass" http_basic_password: "pass"
authentication_logs: false
devise_lockable: false devise_lockable: false
multitenancy: false multitenancy: false
security: security:
authentication_logs: false
last_sign_in: false last_sign_in: false
password_complexity: false password_complexity: false
# lockable: # lockable:
@@ -55,12 +55,12 @@ staging:
errbit_self_hosted_ssl: false errbit_self_hosted_ssl: false
http_basic_username: "" http_basic_username: ""
http_basic_password: "" http_basic_password: ""
authentication_logs: false
devise_lockable: false devise_lockable: false
managers_url: "" managers_url: ""
managers_application_key: "" managers_application_key: ""
multitenancy: false multitenancy: false
security: security:
authentication_logs: false
last_sign_in: false last_sign_in: false
password_complexity: false password_complexity: false
# lockable: # lockable:
@@ -99,12 +99,12 @@ preproduction:
errbit_self_hosted_ssl: false errbit_self_hosted_ssl: false
http_basic_username: "" http_basic_username: ""
http_basic_password: "" http_basic_password: ""
authentication_logs: false
devise_lockable: false devise_lockable: false
managers_url: "" managers_url: ""
managers_application_key: "" managers_application_key: ""
multitenancy: false multitenancy: false
security: security:
authentication_logs: false
last_sign_in: false last_sign_in: false
password_complexity: false password_complexity: false
# lockable: # lockable:
@@ -148,12 +148,12 @@ production:
errbit_self_hosted_ssl: false errbit_self_hosted_ssl: false
http_basic_username: "" http_basic_username: ""
http_basic_password: "" http_basic_password: ""
authentication_logs: false
devise_lockable: false devise_lockable: false
managers_url: "" managers_url: ""
managers_application_key: "" managers_application_key: ""
multitenancy: false multitenancy: false
security: security:
authentication_logs: false
last_sign_in: false last_sign_in: false
password_complexity: false password_complexity: false
# lockable: # lockable: