From f308bca1fbc249405411f4d1bd88f1699aa5d9d8 Mon Sep 17 00:00:00 2001
From: Paul Brinkmeier <hallo@pbrinkmeier.de>
Date: Mon, 21 Aug 2023 13:43:45 +0200
Subject: [PATCH] Use `secrets` instead of `random` to generate access token

---
 jon/auth.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/jon/auth.py b/jon/auth.py
index ec97056..10d7fbb 100644
--- a/jon/auth.py
+++ b/jon/auth.py
@@ -1,4 +1,4 @@
-import random
+import secrets
 import string
 
 from flask import Blueprint, request, redirect, render_template, session
@@ -6,7 +6,7 @@ from flask import Blueprint, request, redirect, render_template, session
 bp = Blueprint("auth", __name__, url_prefix="/auth")
 
 
-ACCESS_TOKEN = "".join(random.choice(string.ascii_lowercase) for i in range(64))
+ACCESS_TOKEN = "".join(secrets.choice(string.ascii_lowercase) for i in range(64))
 
 
 ALLOWED_PATHS = [