aboutsummaryrefslogtreecommitdiffstats
path: root/railties/CHANGELOG.md
diff options
context:
space:
mode:
Diffstat (limited to 'railties/CHANGELOG.md')
-rw-r--r--railties/CHANGELOG.md35
1 files changed, 35 insertions, 0 deletions
diff --git a/railties/CHANGELOG.md b/railties/CHANGELOG.md
index 3afadc8cba..9b6ceff9ff 100644
--- a/railties/CHANGELOG.md
+++ b/railties/CHANGELOG.md
@@ -1,5 +1,40 @@
+* Avoid running system tests by default with the `bin/rails test`
+ and `bin/rake test` commands since they may be expensive.
+
+ *Robin Dupret* (#28286)
+
+* Improve encryption for encrypted secrets.
+
+ Switch to aes-128-gcm authenticated encryption. Also generate a random
+ initialization vector for each encryption so the same input and key can
+ generate different encrypted data.
+
+ Double the encryption key entropy by properly extracting the underlying
+ bytes from the hexadecimal seed key.
+
+ NOTE: Since the encryption mechanism has been switched, you need to run
+ this script to upgrade:
+
+ https://gist.github.com/kaspth/bc37989c2f39a5642112f28b1d93f343
+
+ *Stephen Touset*
+
## Rails 5.1.0.beta1 (February 23, 2017) ##
+* Add encrypted secrets in `config/secrets.yml.enc`.
+
+ Allow storing production secrets straight in the revision control system by
+ encrypting them.
+
+ Use `bin/rails secrets:setup` to opt-in by generating `config/secrets.yml.enc`
+ for the secrets themselves and `config/secrets.yml.key` for the encryption key.
+
+ Edit secrets with `bin/rails secrets:edit`.
+
+ See `bin/rails secrets:setup --help` for more.
+
+ *Kasper Timm Hansen*
+
* Fix running multiple tests in one `rake` command
e.g. `bin/rake test:models test:controllers`
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-30 16:21:05 +0000