![]() |
|
|
|
|
Issue Type:
|
![Bug]() Bug
|
|
Affects Versions:
|
0.2.1 |
|
Assignee:
|
Ivo Ladage - van Doorn
|
|
Components:
|
Authorization & authentication |
|
Created:
|
03/Apr/12 3:37 PM
|
|
Description:
|
For SHA encryption the TokenProvider takes a secret key to encrypt information. The key is read from config, but the actual key used is not exactly the same. The actual key used appends an additional end of line delimiter.
This is caused by the Base64 encoding this way:
new Base64().encodeToString(m_secretKey.getEncoded());
By default, Base64 encoding uses chunks of 76, separated by EOLs. When Base64 encoding a String shorter then 76, it also ends with a EOL.
Proper approach would be to do Base64 encoding without chunking:
new Base64(0).encodeToString(m_secretKey.getEncoded());
|
|
Fix Versions:
|
0.2.2 |
|
Project:
|
Amdatu Auth
|
|
Priority:
|
![Major]() Major
|
|
Reporter:
|
Ivo Ladage - van Doorn
|
|
Security Level:
|
Public (Issues without restricted access) |
|
|
|
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators.
For more information on JIRA, see: http://www.atlassian.com/software/jira
|
_______________________________________________
Amdatu-developers mailing list
[email protected]
http://lists.amdatu.org/mailman/listinfo/amdatu-developers
