VEH-9: Session Tokens are Inefficient

Issue Information

Issue Type: Bug
Priority: Major
Status: Closed

Reported By:
Ben Tasker
Assigned To:
Ben Tasker
Project: VehMan (VEH)
Resolution: Fixed (2013-10-18 02:00:37)
Target version: 1.0.1,
Labels: Sessions,

Created: 2013-10-18 01:31:57
Time Spent Working

Although functioning at the moment (for the purposes of VEH-2), session tokens were designed to minimise the Index size in the Sessions database. At the moment that functionality isn't being utilised.

Keys are also not being cryptographically verified at the moment - a search for the key is simply being run against the sessionKeys table.

Toggle State Changes


Added key verification to auth routine. Will look at adjusting the way the DB is used shortly - functionality can largely mirror the UserKey schema
Commit dcdd4e5 implements the required changes
btasker changed status from 'Open' to 'Resolved'
btasker added 'Fixed' to resolution
btasker added '1.0.1' to Fix Version
btasker changed status from 'Resolved' to 'Closed'