mirror of
https://github.com/discourse/discourse.git
synced 2024-12-21 10:48:49 +08:00
fa8cd629f1
This commit adds token_hash and scopes columns to email_tokens table. token_hash is a replacement for the token column to avoid storing email tokens in plaintext as it can pose a security risk. The new scope column ensures that email tokens cannot be used to perform a different action than the one intended. To sum up, this commit: * Adds token_hash and scope to email_tokens * Reuses code that schedules critical_user_email * Refactors EmailToken.confirm and EmailToken.atomic_confirm methods * Periodically cleans old, unconfirmed or expired email tokens
12 lines
221 B
Ruby
12 lines
221 B
Ruby
# frozen_string_literal: true
|
|
|
|
class AddScopeToEmailToken < ActiveRecord::Migration[6.1]
|
|
def up
|
|
add_column :email_tokens, :scope, :integer
|
|
end
|
|
|
|
def down
|
|
drop_column :email_tokens, :scope, :integer
|
|
end
|
|
end
|