Projet

Général

Profil

0001-python3-encode-oidc-secret-before-calling-crypto-pri.patch

Paul Marillonnet, 06 mars 2019 21:12

Télécharger (1,25 ko)

Voir les différences: 

Subject: [PATCH] python3: encode oidc secret before calling crypto primitives
 (#31172)


 src/authentic2_idp_oidc/utils.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
src/authentic2_idp_oidc/utils.py
138 138 
        return None
139 139 
    sector_identifier = get_sector_identifier(client)
140 140 
    return crypto.aes_base64url_deterministic_encrypt(
141 
        settings.SECRET_KEY, identifier, sector_identifier)
141 
        settings.SECRET_KEY.encode('utf-8'), identifier, sector_identifier).decode('utf-8')
142 142 

  		




  143
  143
  
    

  		




  144
  144
  
    
def reverse_pairwise_sub(client, sub):

  		




  145
  145
  
    
    sector_identifier = get_sector_identifier(client)

  		




  146
  146
  
    
    try:

  		




  147
  147
  
    
        return crypto.aes_base64url_deterministic_decrypt(

  		




  148
  
  
    
            settings.SECRET_KEY, sub, sector_identifier)

  		




  
  148
  
    
            settings.SECRET_KEY.encode('utf-8'), sub, sector_identifier)

  		




  149
  149
  
    
    except crypto.DecryptionError:

  		




  150
  150
  
    
        return None

  		




  151
  151
  
    

  		




  152
  
  
    
-