Personally, I like the simplicity and elegance of a single SECRET_KEYS
setting. It's also a good way to raise awareness that rotation is A Good
Thing to be doing anyways.
In any case, I second all of those who've already endorsed this idea. If I
can help, let me know.
Tobias
On Sun, Nov 18, 2018
Very good point. I'd prefer a second setting though, named like
OLD_SECRET_KEYS or VERIFICATION_SECRET_KEYS. If we're going to add a new
setting, we might as well not force users who aren't rotating their keys to
the new one, especially if they are semantically different.
On Sun, 11 Nov 2018 at 18
On Sunday, November 18, 2018 at 5:21:14 AM UTC+1, Josh Smeaton wrote:
>
> Should this also be a policy change, or is it better to maintain a
> position of "if it's relatively easy and unobtrusive"?
>
Imo absolutely the latter. Personally I am (sadly to late) not really happy
with official supp
