Merge pull request #9540 from nextcloud/backport/9517/stable13

[stable13] Improve OAuth
author: Morris Jobke <hey@morrisjobke.de> 2018-05-23 15:42:22 +0200
committer: GitHub <noreply@github.com> 2018-05-23 15:42:22 +0200
commit: 2f059d1caf006253ccfa9334702f86469cc3a3c8 (patch)
tree: 44b0f33cf4c609e1280a71fd1ce543ea14582872 /core/Controller
parent: 01d3586a0ff930fb8fe5d05d0be98d39c5ed2a35 (diff)
parent: 3c002706a4d1e264518b1017f3a8d32576c9e9f8 (diff)
download: nextcloud-server-2f059d1caf006253ccfa9334702f86469cc3a3c8.tar.gz
nextcloud-server-2f059d1caf006253ccfa9334702f86469cc3a3c8.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/core/Controller/ClientFlowLoginController.php b/core/Controller/ClientFlowLoginController.php
index 0e7fbf892b6..3bd396a0b97 100644
--- a/core/Controller/ClientFlowLoginController.php
+++ b/core/Controller/ClientFlowLoginController.php
@@ -291,7 +291,7 @@ class ClientFlowLoginController extends Controller {
 		);
 
 		if($client) {
-			$code = $this->random->generate(128);
+			$code = $this->random->generate(128, ISecureRandom::CHAR_UPPER.ISecureRandom::CHAR_LOWER.ISecureRandom::CHAR_DIGITS);
 			$accessToken = new AccessToken();
 			$accessToken->setClientId($client->getId());
 			$accessToken->setEncryptedToken($this->crypto->encrypt($token, $code));
author	Morris Jobke <hey@morrisjobke.de>	2018-05-23 15:42:22 +0200
committer	GitHub <noreply@github.com>	2018-05-23 15:42:22 +0200
commit	2f059d1caf006253ccfa9334702f86469cc3a3c8 (patch)
tree	44b0f33cf4c609e1280a71fd1ce543ea14582872 /core/Controller
parent	01d3586a0ff930fb8fe5d05d0be98d39c5ed2a35 (diff)
parent	3c002706a4d1e264518b1017f3a8d32576c9e9f8 (diff)
download	nextcloud-server-2f059d1caf006253ccfa9334702f86469cc3a3c8.tar.gz nextcloud-server-2f059d1caf006253ccfa9334702f86469cc3a3c8.zip