Initial security fixes (#461)

* Initial sec * Update PII fields * FIX add tests * FIX safely read plaintext data on rake backfill * Update user.rb * FIX tests * encryption_ready? block * Test conditional to encryption on --------- Signed-off-by: Juan José Mata <juanjo.mata@gmail.com> Co-authored-by: Juan José Mata <juanjo.mata@gmail.com>
2026-04-19 12:04:08 +00:00 · 2026-01-23 22:05:28 +01:00
parent 71f10c5e4a
commit 696ff0966b
21 changed files with 645 additions and 55 deletions
--- a/test/models/sso_provider_test.rb
+++ b/test/models/sso_provider_test.rb
@@ -80,6 +80,8 @@ class SsoProviderTest < ActiveSupport::TestCase
  end

  test "encrypts client_secret" do
+    skip "Encryption not configured" unless SsoProvider.encryption_ready?
+
    provider = SsoProvider.create!(
      strategy: "openid_connect",
      name: "encrypted_test",