This diff updates the signup process to encrypt user information as it comes in.
Test Plan
User created by this signup process, note no plaintext username / email:
Account information, note the auto-created encryption + indexes:
Potential Concerns
A two-stage commit is used here, to create the user object in Django, and then update them with the correct parameters and delete unsafe data. This might present a problem if the encryption process is halted halfway through, since unsafe data will be present, but that's a small enough risk that I'm comfortable leaving this as is for now.
Summary
This diff updates the signup process to encrypt user information as it comes in.
Test Plan
User created by this signup process, note no plaintext username / email:
Account information, note the auto-created encryption + indexes:
Potential Concerns
A two-stage commit is used here, to create the user object in Django, and then update them with the correct parameters and delete unsafe data. This might present a problem if the encryption process is halted halfway through, since unsafe data will be present, but that's a small enough risk that I'm comfortable leaving this as is for now.