Commit graph

211 commits

Author SHA1 Message Date
Luca Palmieri
8c32639c21 Fix CI 2022-10-01 18:42:17 +01:00
Luca Palmieri
c5f1a76368 Update deps 2022-10-01 14:37:44 +01:00
Luca P
3c42369a1d Update all dependencies 2022-07-05 18:43:30 +01:00
Luca P
debb8abf40 Install ca-certificates in the runtime layer 2022-03-14 11:43:32 +00:00
Luca P
a04a1c15b1 Update spec 2022-03-14 11:33:25 +00:00
Luca P
bec3afc6d1 Update README 2022-03-14 11:33:20 +00:00
Luca P
9ae51e26c8 Add Redis to CI. 2022-03-13 15:54:51 +00:00
Luca P
65a1261589 Use logout button instead of logout link 2022-03-13 15:40:09 +00:00
Luca P
df6bdea82b Last part of chapter 10 - sessions, seed users and change password form 2022-03-12 19:05:53 +00:00
Luca P
2b6c2c5bc0 Add login form with errors via HMAC-protected query parameters 2022-03-12 00:45:26 +00:00
Luca P
92558d41d9 Fix span name 2022-03-11 23:05:41 +00:00
Luca P
19d788569d Install linking system dependencies 2022-03-11 22:47:27 +00:00
Luca P
bbeb07f0c4 Add linker configuration 2022-03-11 22:45:22 +00:00
Luca P
adc0eebdd2 Update to latest stable. 2022-03-09 09:48:47 +00:00
Luca P
4c86217f2b Update to actix-web v4 2022-02-26 00:06:38 +00:00
Luca Palmieri
9a858dade4 Update to actix-web beta.19 2022-01-05 18:22:04 +00:00
Luca Palmieri
0168ad31bc Remove direct 'log' dependency 2022-01-02 16:52:21 +01:00
Luca Palmieri
674358415b Fix clippy errors 2021-12-28 17:51:36 +01:00
Luca Palmieri
6f0a9eb718 Update dependencies. 2021-12-28 13:08:43 +01:00
Luca Palmieri
4d96b887cb Do not use backticks - they lead to the script trying to execute the quoted command. 2021-12-28 12:20:13 +01:00
Luca Palmieri
93ed0c4150 Add secrecy 2021-12-27 15:10:20 +01:00
Luca Palmieri
cb01855668 Run cargo-update 2021-12-27 11:32:52 +01:00
Luca Palmieri
db806e011b Remove tracing-futures. 2021-12-27 11:17:22 +01:00
Luca Palmieri
4ce4ef382a Update to 2021 edition. 2021-12-27 11:00:49 +01:00
Luca Palmieri
1bf53dcf9a Update to latest version of actix-web, tracing-bunyan-formatter and tracing-subscriber. Use tokio macros instead of actix-web's macros. 2021-12-26 17:03:38 +01:00
Luca Palmieri
2e08eefb54 Update to latest version of actix-web, tracing-bunyan-formatter and tracing-subscriber. Use tokio macros instead of actix-web's macros. 2021-12-26 16:55:53 +01:00
LukeMathWalker
6478b7dba4 Use 127.0.0.1 instead of localhost. 2021-10-07 21:56:40 +01:00
LukeMathWalker
91ce771dae Update runtime image. 2021-09-30 21:24:23 +01:00
LukeMathWalker
8266590ecd Lower sqlx's log level 2021-09-30 21:19:08 +01:00
Luca Palmieri
5414cd0212 Check prepared data is up-to-date. 2021-09-27 18:12:59 +02:00
Luca Palmieri
48c9a5b39c Fix clippy lints. 2021-09-11 22:00:34 +02:00
Luca Palmieri
2fc300b2c8 Update actix-web. 2021-09-11 21:59:51 +02:00
Luca Palmieri
50a5814eb2 Keep test suite fast by tuning timeout for tests. 2021-09-01 21:47:30 +02:00
Luca Palmieri
ed0f2fb593 Implement TryFrom instead of TryInto 2021-09-01 09:26:25 +02:00
Luca Palmieri
2aa2c9a642 Update Dockerfile. 2021-08-31 23:41:00 +02:00
Luca Palmieri
454a5e4afd Update actix-http. 2021-08-31 23:30:25 +02:00
Pedro de Matos Fedricci
5ec43a3328 Cache sqlx-cli on ci workflow (#112) 2021-08-31 23:14:11 +02:00
Luca Palmieri
80a286113a Prevent user enumeration via timing attacks. 2021-08-30 18:27:56 +02:00
Luca Palmieri
5492da0b38 Add tests to highlight timing attack. 2021-08-30 17:57:35 +02:00
Luca Palmieri
00ab3e9252 Do not lose context when using spawn blocking. 2021-08-30 16:28:01 +02:00
Luca Palmieri
db0ebb4828 Extract db query into its own function. 2021-08-30 13:56:34 +02:00
Luca Palmieri
4695dfebf4 Remove SHA-3. 2021-08-30 10:10:32 +02:00
Luca Palmieri
e106c5c69a Tests pass. 2021-08-29 22:32:52 +02:00
Luca Palmieri
7d515138d5 Implement password hashing using Argon2, with PHC string format as storage encoding. 2021-08-29 22:09:43 +02:00
LukeMathWalker
312ee4aa89 Password hashing using SHA3-256. 2021-08-22 16:54:41 +01:00
LukeMathWalker
f78f25c358 Store user list, insecurely. 2021-08-15 13:26:16 +01:00
LukeMathWalker
984800f1a8 Random creds. 2021-08-14 23:01:18 +01:00
LukeMathWalker
1d0d1cc382 Extract basic credentials. 2021-08-14 22:57:03 +01:00
LukeMathWalker
03edd1e3b6 Missing auth test. 2021-08-14 19:35:46 +01:00
LukeMathWalker
e0c67b8747 Fix coverage job 2021-08-01 21:12:05 +01:00