Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security patches #54

Merged
merged 7 commits into from
Apr 8, 2022
Merged

Security patches #54

merged 7 commits into from
Apr 8, 2022

Conversation

007vedant
Copy link
Collaborator

  • Added security patches for testing

@007vedant
Updated schema of Voter and Ballot
1660491 
- added voter.salt (largeBinary), voter.key(largeBinary) attributes to voter table.
- updated ballot.id and ballot.voter as GUID type
- added a custom GUID type
@007vedant
Major schema changes
e44919d 
- modified custom GUID class to UUID class
- changed Voter.keys to Voter.ballot_ids(Longtext type)
- updated Ballot.id to default UUID field
- updated Ballot.voter to String field (holds str(uuid))
@007vedant
Added Security fixes
e79854f 
- modified elections_voting_page() to perform encryption on ballots with passcode
- modified elections_edit() to perform decryption on ballots or alert if wrong passcode
@007vedant
Updated Voter schema
fcbfe36 
- changed Voter.ballot_id to LargeBinary type (encrypted byte string)
@007vedant
Modified ballot encryption workflow
5f5702e 
- added encryption for ballot.voter in ballot_id attribute of Voter schema
- removed redundant code
@007vedant
Added encryption.py in elekto/middlewares
991885c 
- handles the encryption workflow in controllers/elections.py
- provides APIs for getting encrypted and decrypted strings
@007vedant
Code refactor
03bc92c 
- moved encryption module to elekto/core
- updated exception handlign in decrypt()
@007vedant 007vedant requested review from jberkus and kalkayan April 6, 2022 17:39
@jberkus
Copy link
Member

jberkus commented Apr 8, 2022

Merging this to branch for testing.

@jberkus jberkus merged commit 2647081 into elekto-io:newballot Apr 8, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jberkus jberkus Awaiting requested review from jberkus

@kalkayan kalkayan Awaiting requested review from kalkayan

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@007vedant @jberkus