davidje13
commented
4 years ago The key is encrypted using TOKEN_SECRET_PASSPHRASE when exporting the key, rather than as an encryption layer around the database.
Closed davidje13 closed 4 years ago
davidje13
commented
4 years ago The key is encrypted using TOKEN_SECRET_PASSPHRASE when exporting the key, rather than as an encryption layer around the database.
Currently, if the database is breached, the key used to sign JWT authentication tokens is available to the attacker. This means that until it is cycled, the attacker can generate and sign login credentials with any details they like, bypassing the encryption of the retro data.
The config table's privateKey should be encrypted in the DB using the same
ENCRYPTION_SECRET_KEYwhich is used for retro data.