clones/friendica
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

use "random_bytes" instead of "openssl_random_pseudo_bytes"

Browse Source
This commit is contained in:
Michael
2021-05-11 13:12:12 +00:00
parent cfb9b73205
commit 74f3c885bf
5 changed files with 8 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/Module/Api/Mastodon/Apps.php
View File

@@ -46,8 +46,8 @@ class Apps extends BaseApi
DI::mstdnError()->RecordNotFound();
}
$client_id = bin2hex(openssl_random_pseudo_bytes(32));
$client_secret = bin2hex(openssl_random_pseudo_bytes(32));
$client_id = bin2hex(random_bytes(32));
$client_secret = bin2hex(random_bytes(32));
$fields = ['client_id' => $client_id, 'client_secret' => $client_secret, 'name' => $name, 'redirect_uri' => $redirect];

4
src/Module/BaseApi.php
View File

@@ -216,8 +216,8 @@ class BaseApi extends BaseModule
public static function getTokenForUser(array $application, int $uid)
{
$code = bin2hex(openssl_random_pseudo_bytes(32));
$access_token = bin2hex(openssl_random_pseudo_bytes(32));
$code = bin2hex(random_bytes(32));
$access_token = bin2hex(random_bytes(32));
$fields = ['application-id' => $application['id'], 'uid' => $uid, 'code' => $code, 'access_token' => $access_token, 'created_at' => DateTimeFormat::utcNow(DateTimeFormat::MYSQL)];
if (!DBA::insert('application-token', $fields, Database::INSERT_UPDATE)) {