website/pkg/encryption
Noah Petherbridge 7869ff83ba Signed and Authenticated Static Photo URLs
* Add support for authenticated static photo URLs, leveraging the NGINX module
  ngx_http_auth_request. The README is updated with an example NGINX config
  how to set this up on the proxy side.
* In settings.json a new SignedPhoto section is added: not enabled by default.
* PhotoURL will append a ?jwt= token to the /static/photos/ path for the
  current user, which expires after 30 seconds.
* When SignedPhoto is enabled, it will enforce that the JWT token is valid and
  matches the username of the current logged-in user, or else will return with
  a 403 Forbidden error.
2024-10-03 18:04:14 -07:00
..
coldstorage Cold Storage with One-Way RSA Encryption 2024-05-29 23:20:24 -07:00
keygen Unit tests and code cleanup for cold storage 2024-05-30 16:59:21 -07:00
encryption_test.go Two Factor Authentication 2023-09-18 17:22:50 -07:00
encryption.go Cold Storage with One-Way RSA Encryption 2024-05-29 23:20:24 -07:00
jwt.go Signed and Authenticated Static Photo URLs 2024-10-03 18:04:14 -07:00