We use cookies to ensure you get the best experience on our website
Home Explore Help
Register Sign In
0ct0pu5
/
desec-stack
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

feat(api): use Python's secrets module for obtaining randomness

Nils Wisiol 5 years ago
parent
09459386bd
commit
29f7411b02
2 changed files with 3 additions and 4 deletions
Split View Show Diff Stats
  1. 1 2
      api/desecapi/models.py
  2. 2 2
      api/desecapi/pdns_change_tracker.py

+ 1 - 2
api/desecapi/models.py
View File 

@@ -9,7 +9,6 @@ import uuid
 
 from base64 import urlsafe_b64encode
 
 from datetime import timedelta
 
 from hashlib import sha256
 
-from os import urandom
 
 
 import psl_dns
 
 import rest_framework.authtoken.models
 
@@ -183,7 +182,7 @@ class Token(ExportModelOperationsMixin('Token'), rest_framework.authtoken.models
 
     plain = None
 
 
     def generate_key(self):
 
-        self.plain = urlsafe_b64encode(urandom(21)).decode()
 
+        self.plain = secrets.token_urlsafe(21)
 
         self.key = Token.make_hash(self.plain)
 
         return self.key

+ 2 - 2
api/desecapi/pdns_change_tracker.py
View File 

@@ -1,4 +1,4 @@
 
-import random
 
+import secrets
 
 import socket
 
 
 from django.conf import settings
 
@@ -85,7 +85,7 @@ class PDNSChangeTracker:
 
             return True
 
 
         def pdns_do(self):
 
-            salt = '%016x' % random.randrange(16 ** 16)
 
+            salt = secrets.token_hex(nbytes=8)
 
             _pdns_post(
 
                 NSLORD, '/zones?rrsets=false',
 
                 {

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5