mirror of
https://github.com/louislam/uptime-kuma.git
synced 2025-01-19 19:21:44 -05:00
push monitor: increase token security (#912)
* increased pushToken security * Merge manually --------- Co-authored-by: Andreas Brett <github@abrett.de> Co-authored-by: Louis Lam <louislam@users.noreply.github.com>
This commit is contained in:
parent
67d0ef571d
commit
42bf27fe5a
14
db/knex_migrations/2023-10-11-1915-push-token-to-32.js
Normal file
14
db/knex_migrations/2023-10-11-1915-push-token-to-32.js
Normal file
@ -0,0 +1,14 @@
|
|||||||
|
exports.up = function (knex) {
|
||||||
|
// update monitor.push_token to 32 length
|
||||||
|
return knex.schema
|
||||||
|
.alterTable("monitor", function (table) {
|
||||||
|
table.string("push_token", 32).alter();
|
||||||
|
});
|
||||||
|
};
|
||||||
|
|
||||||
|
exports.down = function (knex) {
|
||||||
|
return knex.schema
|
||||||
|
.alterTable("monitor", function (table) {
|
||||||
|
table.string("push_token", 20).alter();
|
||||||
|
});
|
||||||
|
};
|
@ -244,6 +244,7 @@
|
|||||||
"successMessage": "Success Message",
|
"successMessage": "Success Message",
|
||||||
"successMessageExplanation": "MQTT message that will be considered as success",
|
"successMessageExplanation": "MQTT message that will be considered as success",
|
||||||
"recent": "Recent",
|
"recent": "Recent",
|
||||||
|
"Reset Token": "Reset Token",
|
||||||
"Done": "Done",
|
"Done": "Done",
|
||||||
"Info": "Info",
|
"Info": "Info",
|
||||||
"Security": "Security",
|
"Security": "Security",
|
||||||
|
@ -119,6 +119,9 @@
|
|||||||
{{ $t("needPushEvery", [monitor.interval]) }}<br />
|
{{ $t("needPushEvery", [monitor.interval]) }}<br />
|
||||||
{{ $t("pushOptionalParams", ["status, msg, ping"]) }}
|
{{ $t("pushOptionalParams", ["status, msg, ping"]) }}
|
||||||
</div>
|
</div>
|
||||||
|
<button class="btn btn-primary" type="button" @click="resetToken">
|
||||||
|
{{ $t("Reset Token") }}
|
||||||
|
</button>
|
||||||
</div>
|
</div>
|
||||||
|
|
||||||
<!-- Keyword -->
|
<!-- Keyword -->
|
||||||
@ -847,6 +850,8 @@ import { sleep } from "../util";
|
|||||||
|
|
||||||
const toast = useToast();
|
const toast = useToast();
|
||||||
|
|
||||||
|
const pushTokenLength = 32;
|
||||||
|
|
||||||
const monitorDefaults = {
|
const monitorDefaults = {
|
||||||
type: "http",
|
type: "http",
|
||||||
name: "",
|
name: "",
|
||||||
@ -1145,7 +1150,9 @@ message HealthCheckResponse {
|
|||||||
"monitor.type"() {
|
"monitor.type"() {
|
||||||
if (this.monitor.type === "push") {
|
if (this.monitor.type === "push") {
|
||||||
if (! this.monitor.pushToken) {
|
if (! this.monitor.pushToken) {
|
||||||
this.monitor.pushToken = genSecret(10);
|
// ideally this would require checking if the generated token is already used
|
||||||
|
// it's very unlikely to get a collision though (62^32 ~ 2.27265788 * 10^57 unique tokens)
|
||||||
|
this.monitor.pushToken = genSecret(pushTokenLength);
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -1348,6 +1355,10 @@ message HealthCheckResponse {
|
|||||||
return true;
|
return true;
|
||||||
},
|
},
|
||||||
|
|
||||||
|
resetToken() {
|
||||||
|
this.monitor.pushToken = genSecret(pushTokenLength);
|
||||||
|
},
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* Submit the form data for processing
|
* Submit the form data for processing
|
||||||
* @returns {void}
|
* @returns {void}
|
||||||
|
Loading…
Reference in New Issue
Block a user