external/aurweb
0
0
Fork 0
mirror of https://gitlab.archlinux.org/archlinux/aurweb.git synced 2025-02-03 10:43:03 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

fix(fastapi): use secrets module to generate random strings

Browse source 
Signed-off-by: Kevin Morris <kevr@0cost.org>
This commit is contained in:
Kevin Morris 2021-12-03 15:13:41 -08:00
parent 81f8c23265
commit b0b5e4c9d1
No known key found for this signature in database
GPG key ID: F7E46DED420788F3
1 changed files with 3 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
aurweb/util.py
View file

@ -1,7 +1,6 @@
import base64 import base64
import copy import copy
import math import math
import random
import re import re
import secrets import secrets
import string import string
@ -25,9 +24,9 @@ from aurweb import defaults, logging
logger = logging.get_logger(__name__) logger = logging.get_logger(__name__)
def make_random_string(length): def make_random_string(length: int) -> str:
return ''.join(random.choices(string.ascii_lowercase alphanumerics = string.ascii_lowercase + string.digits
+ string.digits, k=length)) return ''.join([secrets.choice(alphanumerics) for i in range(length)])
def make_nonce(length: int = 8): def make_nonce(length: int = 8):