paul/jon
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Use secrets instead of random to generate access token

Browse Source
This commit is contained in:
Paul Brinkmeier 2023-08-21 13:43:45 +02:00
parent c6b518bd15
commit f308bca1fb
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
jon/auth.py
View File

@ -1,4 +1,4 @@
import random import secrets
import string import string
from flask import Blueprint, request, redirect, render_template, session from flask import Blueprint, request, redirect, render_template, session
@ -6,7 +6,7 @@ from flask import Blueprint, request, redirect, render_template, session
bp = Blueprint("auth", __name__, url_prefix="/auth") bp = Blueprint("auth", __name__, url_prefix="/auth")
ACCESS_TOKEN = "".join(random.choice(string.ascii_lowercase) for i in range(64)) ACCESS_TOKEN = "".join(secrets.choice(string.ascii_lowercase) for i in range(64))
ALLOWED_PATHS = [ ALLOWED_PATHS = [