store plaintext secret key in .env, hash at startup

2026-06-25 16:43:49 +03:00
parent 9644b64a90
commit 8df9af86e6
4 changed files with 14 additions and 10 deletions
@@ -11,5 +11,5 @@ POSTGRES_USER="postgres"
 POSTGRES_PASSWORD="postgres"
 # TOKEN_LIFETIME in minutes
 TOKEN_LIFETIME=600
-# Secret key for registration (bcrypt hash, client sends plaintext)
-REGISTRATION_SECRET_KEY=$2a$10$mSo1MvV6U7GazfxceLFDl.gBNPm6lnjClWYsFQesx0SalObvBLIF6
+# Secret key for registration (plaintext, hashed with bcrypt at startup)
+REGISTRATION_SECRET_KEY=FtracKer*1405.