codeninjasllc/discourse
1
0
Fork 0
mirror of https://github.com/codeninjasllc/discourse.git synced 2025-03-14 00:50:14 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

FEATURE: change SSO to use sha256 HMAC, which is more secure

Browse source
This commit is contained in:
Sam 2014-02-26 09:44:41 +11:00
parent 8cbff3672f
commit 890d06ac04
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
lib/single_sign_on.rb
View file

@ -43,7 +43,7 @@ class SingleSignOn
end
def sign(payload)
Digest::SHA2.hexdigest(payload + sso_secret)
OpenSSL::HMAC.hexdigest("sha256", sso_secret, payload)
end