Signature mismatch in wsgi multi worker deployment

[keshav-space]

Altcha validation fails due to signature mismatch when running in wsgi deployment with multiple workers.

django-altcha/django_altcha/__init__.py

Line 30 in cd40299

ALTCHA_HMAC_KEY = getattr(settings, "ALTCHA_HMAC_KEY", secrets.token_hex(32))

Fallback key generation does not work reliably in wsgi deployments with multiple workers, since each worker loads django_altcha independently, and each one ends up generating a different ALTCHA_HMAC_KEY key. And when challenge generation and validation happen in different workers, Altcha validation fails due to signature mismatch.

Possible fix would be to make ALTCHA_HMAC_KEY mandatory.

[tdruez]

Possible fix would be to make ALTCHA_HMAC_KEY mandatory.

Yes, I also think this is the right approach. Let's first raise a DeprecationWarning for the next release cycle, so users have the chance to set the ALTCHA_HMAC_KEY value before making it a breaking change.

[tdruez]

By the way, the same issue probably applies to the cache system for replay attack protection, when the ALTCHA_CACHE_ALIAS is not provided and the LocMemCache is used.

---

Update: Now documented at https://github.com/aboutcode-org/django-altcha?tab=readme-ov-file#replay-attack-protection and https://github.com/aboutcode-org/django-altcha?tab=readme-ov-file#altcha_cache_alias

[tdruez]

Before closing this one, let's make the ALTCHA_HMAC_KEY mandatory before the 1.0 release.

[tdruez]

Completed in:

• feat!: make the ALTCHA_HMAC_KEY setting mandatory #35
• feat!: refactor the cache configuration using "default" when not provided  #36