Skip to content

Commit

Permalink
Use NewRandom instead of NewUUID
Browse files Browse the repository at this point in the history 
NewUUID is based on a timestamp, while NewRandom
is based on a PRNG, like it should be.
  • Loading branch information
@swenson
swenson committed Jan 30, 2015
1 parent f4872e1 commit 82578cf
Showing 1 changed file with 3 additions and 3 deletions.
6 changes: 3 additions & 3 deletions tokengen.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@ func removePadding(token string) string {

// GenerateAuthorizeToken generates a base64-encoded UUID code
func (a *AuthorizeTokenGenDefault) GenerateAuthorizeToken(data *AuthorizeData) (ret string, err error) {
token := uuid.NewUUID()
token := uuid.NewRandom()
return removePadding(base64.URLEncoding.EncodeToString([]byte(token))), nil
}

Expand All @@ -27,11 +27,11 @@ type AccessTokenGenDefault struct {

// GenerateAccessToken generates base64-encoded UUID access and refresh tokens
func (a *AccessTokenGenDefault) GenerateAccessToken(data *AccessData, generaterefresh bool) (accesstoken string, refreshtoken string, err error) {
token := uuid.NewUUID()
token := uuid.NewRandom()
accesstoken = removePadding(base64.URLEncoding.EncodeToString([]byte(token)))

if generaterefresh {
rtoken := uuid.NewUUID()
rtoken := uuid.NewRandom()
refreshtoken = removePadding(base64.URLEncoding.EncodeToString([]byte(rtoken)))
}
return
Expand Down

0 comments on commit 82578cf

Please sign in to comment.