consul/nairobi
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add security secret "last_sign_in"

Browse Source 
In order to comply with the security measure for the
ENS: "[op.acc.5.r5.2] The user shall be informed of
the last access made with his identity".

We have added a new secret to display the last
access made to the user on the "My account" page.
This commit is contained in:
taitus
2023-10-09 10:04:14 +02:00
parent 13e9b75d9a
commit 87fc3c572b
7 changed files with 56 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
config/secrets.yml.example
View File

@@ -19,6 +19,8 @@ development:
http_basic_username: "dev"
http_basic_password: "pass"
multitenancy: false
security:
last_sign_in: false
secret_key_base: 56792feef405a59b18ea7db57b4777e855103882b926413d4afdfb8c0ea8aa86ea6649da4e729c5f5ae324c0ab9338f789174cf48c544173bc18fdc3b14262e4
<<: *maps
@@ -50,6 +52,8 @@ staging:
managers_url: ""
managers_application_key: ""
multitenancy: false
security:
last_sign_in: false
tenants:
# If you've enabled multitenancy, you can overwrite secrets for a
# specific tenant with:
@@ -58,7 +62,7 @@ staging:
# secret_key: my_secret_value
#
# Currently you can overwrite SMTP, SMS, manager, microsoft API,
# HTTP basic, twitter, facebook, google and wordpress settings.
# HTTP basic, twitter, facebook, google, wordpress and security settings.
<<: *maps
<<: *apis
@@ -86,6 +90,8 @@ preproduction:
managers_url: ""
managers_application_key: ""
multitenancy: false
security:
last_sign_in: false
tenants:
# If you've enabled multitenancy, you can overwrite secrets for a
# specific tenant with:
@@ -94,7 +100,7 @@ preproduction:
# secret_key: my_secret_value
#
# Currently you can overwrite SMTP, SMS, manager, microsoft API,
# HTTP basic, twitter, facebook, google and wordpress settings.
# HTTP basic, twitter, facebook, google, wordpress and security settings.
twitter_key: ""
twitter_secret: ""
facebook_key: ""
@@ -127,6 +133,8 @@ production:
managers_url: ""
managers_application_key: ""
multitenancy: false
security:
last_sign_in: false
tenants:
# If you've enabled multitenancy, you can overwrite secrets for a
# specific tenant with:
@@ -135,7 +143,7 @@ production:
# secret_key: my_secret_value
#
# Currently you can overwrite SMTP, SMS, manager, microsoft API,
# HTTP basic, twitter, facebook, google and wordpress settings.
# HTTP basic, twitter, facebook, google, wordpress and security settings.
twitter_key: ""
twitter_secret: ""
facebook_key: ""