mailinabox/api
Joshua Tauberer e884c4774f Replace HMAC-based session API keys with tokens stored in memory in the daemon process
Since the session cache clears keys after a period of time, this fixes #1821.

Based on https://github.com/mail-in-a-box/mailinabox/pull/2012, and so:

Co-Authored-By: NewbieOrange <NewbieOrange@users.noreply.github.com>

Also fixes #2029 by not revealing through the login failure error message whether a user exists or not.
2021-09-06 09:23:58 -04:00
..
docs Add OpenAPI HTTP spec (#1804) 2020-08-22 15:44:19 -04:00
mailinabox.yml Replace HMAC-based session API keys with tokens stored in memory in the daemon process 2021-09-06 09:23:58 -04:00