summaryrefslogtreecommitdiffstats
path: root/store/sql_store.go
Commit message (Collapse)AuthorAgeFilesLines
* GIT-721 Removing sql ping log=Corey Hulen2015-09-191-2/+2
|
* Merge pull request #699 from mattermost/PLT-92Joram Wilander2015-09-181-2/+91
|\ | | | | PLT-92 Adding server side versioning to the binary
| * Making changes to versioning=Corey Hulen2015-09-171-7/+7
| |
| * Fixing postgres issue and bumping version number=Corey Hulen2015-09-161-2/+49
| |
| * Adding database schema version=Corey Hulen2015-09-161-2/+37
| |
| * PLT-92 Adding server side versioning to the binary=Corey Hulen2015-09-161-0/+7
| |
* | Return false when checking if column exists, if the table does not exist ↵JoramWilander2015-09-181-0/+4
|/ | | | with postgres.
* Implement OAuth2 service provider functionality.JoramWilander2015-09-161-7/+20
|
* Adding ability to upgrade postgres schema=Corey Hulen2015-08-271-56/+92
|
* update our postgresql index check to work with 9.2+ versions of postgresqlJoramWilander2015-07-281-1/+1
|
* Fixing merges for latest postgres=Corey Hulen2015-07-231-28/+69
|
* fixing merge conflicts=Corey Hulen2015-07-211-92/+56
|\
| * Renamed FullName column in database to Nickname. Renamed all serverside ↵hmhealey2015-07-171-21/+26
| | | | | | | | references from FullName to Nickname.
| * Updated database schema for full utf8 compatibilitynickago2015-07-091-2/+10
| |
* | Patching remainder of the sql stmts to work with postgres=Corey Hulen2015-07-121-4/+7
| |
* | Fixes mm-1420 adding postgres support=Corey Hulen2015-07-121-24/+79
|/
* Fixing unit tests=Corey Hulen2015-07-061-5/+5
|
* SQL store: use authenticated encryptionFrank Denis2015-06-241-6/+32
| | | | | | | | | | | | | | | | | | | | Data were encrypted using AES-CFB, with a properly randomized IV, but without any authenticators. This allows the data to be tampered with, without being noticed by the application. This diff slightly changes the encryption/decryption functions in sql_store.go to add a HMAC-SHA256 authenticator to encrypted messages. Two keys are derived from AtRestEncryptKey: the first half of SHA512(AtRestEncryptKey) for the block cipher and the second half for the MAC. This can be changed to a KDF if needed. The decryption function also checks that base64 decoding actually worked, and that the ciphertext is long enough to include the IV and the MAC. Unfortunately, it breaks backward compatibility. But if such a change has to be made, it has to be made early.
* first commit=Corey Hulen2015-06-141-0/+372