search

HemmeligOrg / Hemmelig.app

Keep your sensitive information out of chat logs, emails, and more with encrypted secrets.
https://hemmelig.app
MIT License
684 stars 59 forks source link

feat: use password as part of the encryption key #213

Closed bjarneo closed 11 months ago

bjarneo commented 11 months ago

Meaning when the password is set, it will be used to decrypt the message. The password will not be part of the key set in the URL at all.

This also means the secret is no longer just protected by a password check.

  1. The password will block access to fetch the secret if is incorrect
  2. The password will be part of the encryption and decryption key, but it is not set as a fragment in the URL
sonarcloud[bot] commented 11 months ago

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication