Description

WAI middleware to automatically encrypt and sign cookies.

Description

wai-secure-cookies is a WAI middleware to automatically encrypt and sign cookies w/ specified keys, and a command line tool to generate those keys

README.md

hackage.haskell.org

wai-secure-cookies

I extracted a WAI middleware to automatically encrypt and sign cookies.

WARNING

I am not a cryptographer, and the crypto libraries in Haskell are not nearly as easy to use as what I'm used to in Ruby, so I wouldn't depend on this for a serious project until it's had some proper eyes on it.

Usage

Populate the following environment variables in your WAI application process:

WAI_COOKIE_VALIDATION_KEY # key to sign cookie names and values
WAI_COOKIE_ENCRYPTION_KEY # key to encrypt cookie names and values

You can generate random keys with waicookie-genkey:

waicookie-genkey <key type> ...
key types: encryption
           validation

wai-secure-cookies

wai-secure-cookies

Usage

Version

License

Status

Source

Homepage

Platforms (75)

wai-secure-cookies

Usage

Version

License

Status

Source

Homepage

Platforms75 (75)

Platforms (75)