GeneralBots/botserver
2
1
Fork 0
Code Activity Actions
botserver/src/designer
History
Rodrigo Rodriguez e143968179 feat: Add JWT secret rotation and health verification 
SEC-02: Implement credential rotation security improvements

- Add JWT secret rotation to rotate-secret command
- Generate 64-character HS512-compatible secrets
- Automatic .env backup with timestamp
- Atomic file updates via temp+rename pattern
- Add health verification for rotated credentials
- Route rotate-secret, rotate-secrets, vault commands in CLI
- Add verification attempts for database and JWT endpoints

Security improvements:
- JWT_SECRET now rotatable (previously impossible)
- Automatic rollback via backup files
- Health checks catch configuration errors
- Clear warnings about token invalidation

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
2026-02-19 19:42:41 +00:00
..
canvas_api Refactor: Split large files into modular subdirectories 2026-02-12 21:09:30 +00:00
designer_api Refactor: Split large files into modular subdirectories 2026-02-12 21:09:30 +00:00
bas_analyzer.rs feat: complete General Bots 7.0 (v6.2.0) 2026-01-25 10:29:54 -03:00
canvas.rs feat: Add JWT secret rotation and health verification 2026-02-19 19:42:41 +00:00
mod.rs feat: Add JWT secret rotation and health verification 2026-02-19 19:42:41 +00:00
ui.rs Refactor: Split large files into modular subdirectories 2026-02-12 21:09:30 +00:00
workflow_canvas.rs feat: Add JWT secret rotation and health verification 2026-02-19 19:42:41 +00:00