0001-idp_oidc-set-default-algorithm-to-HMAC-fixes-28249.patch
src/authentic2_idp_oidc/migrations/0001_initial.py | ||
---|---|---|
44 | 44 |
('redirect_uris', models.TextField(verbose_name='redirect URIs', validators=[authentic2_idp_oidc.models.validate_https_url])), |
45 | 45 |
('sector_identifier_uri', models.URLField(verbose_name='sector identifier URI', blank=True)), |
46 | 46 |
('identifier_policy', models.PositiveIntegerField(default=2, verbose_name='identifier policy', choices=[(1, 'uuid'), (2, 'pairwise'), (3, 'email')])), |
47 |
('idtoken_algo', models.PositiveIntegerField(default=1, verbose_name='IDToken signature algorithm', choices=[(2, 'HMAC')])),
|
|
47 |
('idtoken_algo', models.PositiveIntegerField(default=2, verbose_name='IDToken signature algorithm', choices=[(2, 'HMAC')])),
|
|
48 | 48 |
('created', models.DateTimeField(auto_now_add=True, verbose_name='created')), |
49 | 49 |
('modified', models.DateTimeField(auto_now=True, verbose_name='modified')), |
50 | 50 |
], |
src/authentic2_idp_oidc/models.py | ||
---|---|---|
122 | 122 |
return OIDCClient.ALGO_CHOICES |
123 | 123 | |
124 | 124 |
idtoken_algo = models.PositiveIntegerField( |
125 |
default=ALGO_RSA,
|
|
125 |
default=ALGO_HMAC,
|
|
126 | 126 |
choices=get_idtoken_algorithms(), |
127 | 127 |
verbose_name=_('IDToken signature algorithm')) |
128 | 128 |
has_api_access = models.BooleanField( |
129 |
- |