Merge branch 'bugfix/oauth-token-padding' into 'develop'

author lambda <pleromagit@rogerbraun.net>

Fri, 15 Feb 2019 14:58:13 +0000 (14:58 +0000)

committer lambda <pleromagit@rogerbraun.net>

Fri, 15 Feb 2019 14:58:13 +0000 (14:58 +0000)
author lambda <pleromagit@rogerbraun.net>
Fri, 15 Feb 2019 14:58:13 +0000 (14:58 +0000)
committer lambda <pleromagit@rogerbraun.net>
Fri, 15 Feb 2019 14:58:13 +0000 (14:58 +0000)
diff --git a/lib/pleroma/web/oauth/app.ex b/lib/pleroma/web/oauth/app.ex

index 3e8acde31cd0117e6c1622c98b41b7a1879b5a7b..8b61bf3a4e964e1c2837d926aa100ef40ed54119 100644 (file)
--- a/lib/pleroma/web/oauth/app.ex
+++ b/lib/pleroma/web/oauth/app.ex
@@ -25,8 +25,14 @@ defmodule Pleroma.Web.OAuth.App do
  
      if changeset.valid? do
        changeset
-      |> put_change(:client_id, :crypto.strong_rand_bytes(32) |> Base.url_encode64())
-      |> put_change(:client_secret, :crypto.strong_rand_bytes(32) |> Base.url_encode64())
+      |> put_change(
+        :client_id,
+        :crypto.strong_rand_bytes(32) |> Base.url_encode64(padding: false)
+      )
+      |> put_change(
+        :client_secret,
+        :crypto.strong_rand_bytes(32) |> Base.url_encode64(padding: false)
+      )
      else
        changeset
      end
diff --git a/lib/pleroma/web/oauth/authorization.ex b/lib/pleroma/web/oauth/authorization.ex

index 75c9ab9aa682793b9df17b32297ffd65a5e4475f..9039b8b4564d5d21bc56283d1f2c2cadc943c90b 100644 (file)
--- a/lib/pleroma/web/oauth/authorization.ex
+++ b/lib/pleroma/web/oauth/authorization.ex
@@ -24,7 +24,7 @@ defmodule Pleroma.Web.OAuth.Authorization do
    end
  
    def create_authorization(%App{} = app, %User{} = user) do
-    token = :crypto.strong_rand_bytes(32) |> Base.url_encode64()
+    token = :crypto.strong_rand_bytes(32) |> Base.url_encode64(padding: false)
  
      authorization = %Authorization{
        token: token,
diff --git a/lib/pleroma/web/oauth/oauth_controller.ex b/lib/pleroma/web/oauth/oauth_controller.ex

index e4d0601f8ba00b7b8963cb10b73a83f0c18b8abf..dddfcf29981aa1164d33a88be96a9e961cc76320 100644 (file)
--- a/lib/pleroma/web/oauth/oauth_controller.ex
+++ b/lib/pleroma/web/oauth/oauth_controller.ex
@@ -173,7 +173,7 @@ defmodule Pleroma.Web.OAuth.OAuthController do
      token
      |> URI.decode()
      |> Base.url_decode64!(padding: false)
-    |> Base.url_encode64()
+    |> Base.url_encode64(padding: false)
    end
  
    defp get_app_from_request(conn, params) do
diff --git a/lib/pleroma/web/oauth/token.ex b/lib/pleroma/web/oauth/token.ex

index b0bbeeb69d47fcc62fcdb43fe8d5f82dec1a68d6..ca9e718ac8a27b562c4de9936500f50bddc51b23 100644 (file)
--- a/lib/pleroma/web/oauth/token.ex
+++ b/lib/pleroma/web/oauth/token.ex
@@ -31,8 +31,8 @@ defmodule Pleroma.Web.OAuth.Token do
    end
  
    def create_token(%App{} = app, %User{} = user) do
-    token = :crypto.strong_rand_bytes(32) |> Base.url_encode64()
-    refresh_token = :crypto.strong_rand_bytes(32) |> Base.url_encode64()
+    token = :crypto.strong_rand_bytes(32) |> Base.url_encode64(padding: false)
+    refresh_token = :crypto.strong_rand_bytes(32) |> Base.url_encode64(padding: false)
  
      token = %Token{
        token: token,
author	lambda <pleromagit@rogerbraun.net>
	Fri, 15 Feb 2019 14:58:13 +0000 (14:58 +0000)
committer	lambda <pleromagit@rogerbraun.net>
	Fri, 15 Feb 2019 14:58:13 +0000 (14:58 +0000)
lib/pleroma/web/oauth/app.ex		patch \| blob \| history
lib/pleroma/web/oauth/authorization.ex		patch \| blob \| history
lib/pleroma/web/oauth/oauth_controller.ex		patch \| blob \| history
lib/pleroma/web/oauth/token.ex		patch \| blob \| history