-
No decryption [key] is needed to check whether a token has expired. A "Fernet.is_expired(token, ttl=...)" API would e.g. allow token holders to check whether they need to refresh a token without a rou…
tlynn updated
4 years ago
-
I am currently writing a custom library for token generation and verification (very much like fernet). Since the encrypted payload is quite short (at most a few hundred bytes), I ran a quick benchmark…
-
When I try to encrypt a message that less than 16bytes, I get below error:
```
Traceback (most recent call last):
File "", line 1, in
File "/usr/local/lib/python3.6/site-packages/cryptograp…
-
-
Based on #2159, it would probably make sense to mention using HKDF in the docs with Fernet. That way users who are trying to encrypt without using a key stored on disk somewhere have clear guidance.
wbond updated
4 years ago
-
The `cryptography` package expects an instance of `bytes` to be sent to its `Fernet.encrypt` method: https://github.com/pyca/cryptography/blob/master/cryptography/fernet.py#L63
Since `json.dumps` is …
-
cryptography = 2.2.2
cffi = 1.11.5
pip = 10.0.1
setuptools = 39.1.0
Installed using `pip3 install ...`
We are encrypting twice because in our application, each process is called twice with id…
-
This is motivated by the HTTPBis working group making a call for adoption of the [Encrypted Content-Encoding for HTTP draft specification](https://tools.ietf.org/html/draft-thomson-http-encryption-02)…
-
Fernet encryption stores the token creation time in the token, in plaintext, without a supported way to opt out of that. From a privacy perspective, that's not optimal.
I believe that it would make s…
thejh updated
4 years ago
-
Hi, I'm working on a project that shares encrypted values with an existing Node system using AES 256 via [crypto-js][1]. What I would like to do is encrypt / decrypt the values in Python with cryptog…