mastodon/db/migrate/20200510110808_reset_web_app_secret.rb at fe2d6fe1057677a1060fe1d882aac744456deff4 - specter/mastodon - git.minimally.online

specter/mastodon

forked from fedi/mastodon

Eugen Rochko 4b2d9b8a55

Reset secret of web app that could have been exposed by Doorkeeper (#13688 )

There are no obvious ways it could be misused, as the secret is not
really used for anything, but it is best to secure it for the future

Follow-up to #13613

2020-05-10 18:18:12 +02:00

16 lines

254 B

Ruby

Raw Blame History

 class ResetWebAppSecret < ActiveRecord::Migration[5.2]
   disable_ddl_transaction!
   def up
     web_app = Doorkeeper::Application.find_by(superapp: true)
     return if web_app.nil?
     web_app.renew_secret
     web_app.save!
   end
   def down
   end
 end