MIGDYN/irclogger_web
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Frontend: Better way of generating session tokens

Browse Source
This commit is contained in:
mrkubax10 2023-09-09 10:52:28 +02:00
parent 606b13470e
commit 1e7bea8e5f
2 changed files with 7 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
frontend_routes.pm
View File

@ -20,7 +20,6 @@ use lib ".";
use frontend_session; use frontend_session;
use Digest::SHA; use Digest::SHA;
use Data::Dumper;
use feature qw(switch); use feature qw(switch);
use strict; use strict;
@ -106,7 +105,7 @@ sub handlePath {
return 1; return 1;
} }
my $token = Digest::SHA::sha256_hex(sprintf("%x", rand(0xFFFFFFFF)%0xFF)); my $token = frontend_session::newSessionToken();
$frontend_session::sessions{$token}{"username"} = $username; $frontend_session::sessions{$token}{"username"} = $username;
$frontend_session::sessions{$token}{"logged"} = 1; $frontend_session::sessions{$token}{"logged"} = 1;

6
frontend_session.pm
View File

@ -16,11 +16,17 @@
package frontend_session; package frontend_session;
use Digest::SHA;
use strict; use strict;
use warnings; use warnings;
our %sessions; our %sessions;
sub newSessionToken {
return Digest::SHA::sha256_hex(sprintf("%x", rand(0xFFFFFFFF)));
}
sub isValidSession { sub isValidSession {
my $aSession = $_[0]; my $aSession = $_[0];