Add FIPS support for API keys endpoint
What does this MR do and why?
Contributes to #355877 (closed)
- When FIPS enabled, return InvalidFingerprint error for MD5 fingerprints
Screenshots or screen recordings
Before | After |
---|---|
How to set up and validate locally
- Start GDK app in FIPS mode (
FIPS_MODE=true gdk thin
) - Fetch MD5 fingerprint from Rails console (
pry> Key.first.fingerprint
) - Open
http://127.0.0.1:3000/api/v4/keys?fingerprint=<MD5-fingerprint-from-2-step>
- You should see an error that key is missing
MR acceptance checklist
This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.
-
I have evaluated the MR acceptance checklist for this MR.
Edited by Vasilii Iakliushin