#6271 - Addon for sensitive information
-
By PDStig
- Added
- 8 views
| Identifier | #6271 |
|---|---|
| Issue type | Feature request or suggestion |
| Title | Addon for sensitive information |
| Status | Open |
| Tags |
Roadmap: Over the horizon (custom) |
| Handling member | Deleted |
| Addon | [All Projects] General |
| Description | Make a simple non-bundled addon that can be installed which manages sensitive information. A "secret" can be created (large text of sensitive information) which is then encrypted and stored in its encrypted form in the database. Encryption is done using Sodium; a private/public key pair is generated. The public key is stored in the database along with the encrypted message. The private key is returned after the secret is saved (and must be saved as it can never be retrieved again). To view a secret, you must go to the GUID-based URL where you will then be prompted to provide the private key. The sensitive information will be displayed and immediately destroyed from the database so it cannot be accessed again (or perhaps there is an option for this?) Add a privilege to define who can create secrets; defaults to all members. |
| Steps to reproduce | |
| Additional information | This is targeting composr.app specifically so we can deprecate using encrypted CPFs for FTP credentials or whatnot. It can also be used by anyone offering professional Composr support and need to collect credentials securely from their clients (assuming they have a business site running Composr they can use). |
| Funded? | No |
The system will post a comment when this issue is modified (e.g., status changes). To be notified of this, click "Enable comment notifications".
Comments