NoLog.cz/decide.nolog.cz
6
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
decide.nolog.cz/api
History
jelhan b9bef69977 user has to proof that he knows encryption key when he participates 
Therefore sha256 hash of encryption key is validated against one which is stored
on server on poll creation.
This one is transfered as X-Croodle-Proof-Key-Knowledge HTTP HEADER.

Prevents an attacker of transmitting data with wrong encryption key, which
would cause decryption errors for legit users.
2015-08-23 18:56:41 +02:00
..
classes user has to proof that he knows encryption key when he participates 2015-08-23 18:56:41 +02:00
tests user has to proof that he knows encryption key when he participates 2015-08-23 18:56:41 +02:00
codeception.yml tests for api using codeception 2015-08-01 21:05:22 +02:00
composer.json tests for api using codeception 2015-08-01 21:05:22 +02:00
composer.lock tests for api using codeception 2015-08-01 21:05:22 +02:00
cron.php reimplement expiration date in new api models 2015-08-23 06:18:05 +02:00
index.php user has to proof that he knows encryption key when he participates 2015-08-23 18:56:41 +02:00