Fix potential timing side-channels in authentication mechanisms #737

Merged

lx merged 2 commits from fix-auth-ct-eq into main

2024-02-29 14:04:38 +00:00

Author	SHA1	Message	Date
Alex Auvolat	6d33e721c4	[fix-auth-ct-eq] use consant time comparison for awsv4 signature verification All checks were successful ci/woodpecker/push/debug Pipeline was successful Details ci/woodpecker/pr/debug Pipeline was successful Details	2024-02-29 13:07:18 +01:00
Alex Auvolat	eaac4924ef	[fix-auth-ct-eq] use argon2 hashing and verification for admin/metrics token checking	2024-02-29 13:07:15 +01:00