php-tenant

History

Snider a35cbc9306 security: encrypt 2FA secrets and hash invitation tokens - Add encrypted cast to UserTwoFactorAuth secret and recovery_codes - Hash invitation tokens on creation using Hash::make() - Update token verification to use Hash::check() - Add migration commands for existing data: - security:encrypt-2fa-secrets - security:hash-invitation-tokens - Add tests for encryption and hashing Fixes SEC-003, SEC-004 from security audit. Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-01-29 12:20:53 +00:00
..
Factories	security: encrypt 2FA secrets and hash invitation tokens	2026-01-29 12:20:53 +00:00
Seeders	refactor: rename namespace from Core\Mod\Tenant to Core\Tenant	2026-01-27 16:30:46 +00:00

Snider a35cbc9306 security: encrypt 2FA secrets and hash invitation tokens

- Add encrypted cast to UserTwoFactorAuth secret and recovery_codes
- Hash invitation tokens on creation using Hash::make()
- Update token verification to use Hash::check()
- Add migration commands for existing data:
  - security:encrypt-2fa-secrets
  - security:hash-invitation-tokens
- Add tests for encryption and hashing

Fixes SEC-003, SEC-004 from security audit.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-01-29 12:20:53 +00:00

Factories

security: encrypt 2FA secrets and hash invitation tokens

2026-01-29 12:20:53 +00:00

Seeders

refactor: rename namespace from Core\Mod\Tenant to Core\Tenant

2026-01-27 16:30:46 +00:00