domi/forgejo-domi
1
0
Fork 0
forked from forgejo/forgejo
Code Pull requests Activity

[GITEA] Refactor generation of JWT secret

Browse source 
- Remove non base64-ed version of JWT secret generation. Because all
occurences need the Base64 version.
This commit is contained in:
Gusted 2024-01-24 16:25:06 +01:00
parent 2524c64853
commit 6a6b5a31a8
No known key found for this signature in database
GPG key ID: FD821B732837125F
5 changed files with 8 additions and 17 deletions
Download patch file Download diff file Expand all files Collapse all files

16
modules/generate/generate.go
View file

@ -38,22 +38,14 @@ func NewInternalToken() (string, error) {
return internalToken, nil
}
// NewJwtSecret generates a new value intended to be used for JWT secrets.
func NewJwtSecret() ([]byte, error) {
// NewJwtSecret generates a new base64 encoded value intended to be used for JWT secrets.
func NewJwtSecret() ([]byte, string, error) {
bytes := make([]byte, 32)
_, err := io.ReadFull(rand.Reader, bytes)
if err != nil {
return nil, err
}
return bytes, nil
}
// NewJwtSecretBase64 generates a new base64 encoded value intended to be used for JWT secrets.
func NewJwtSecretBase64() ([]byte, string, error) {
bytes, err := NewJwtSecret()
_, err := rand.Read(bytes)
if err != nil {
return nil, "", err
}
return bytes, base64.RawURLEncoding.EncodeToString(bytes), nil
}