mirror of
https://github.com/drakkan/sftpgo.git
synced 2024-11-24 16:40:26 +00:00
httpd: always use an opaque signing key
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
This commit is contained in:
parent
4cb6acefb2
commit
618723c457
1 changed files with 6 additions and 3 deletions
|
@ -1309,11 +1309,14 @@ func stopCleanupTicker() {
|
|||
}
|
||||
|
||||
func getSigningKey(signingPassphrase string) []byte {
|
||||
var key []byte
|
||||
if signingPassphrase != "" {
|
||||
sk := sha256.Sum256([]byte(signingPassphrase))
|
||||
return sk[:]
|
||||
key = []byte(signingPassphrase)
|
||||
} else {
|
||||
key = util.GenerateRandomBytes(32)
|
||||
}
|
||||
return util.GenerateRandomBytes(32)
|
||||
sk := sha256.Sum256(key)
|
||||
return sk[:]
|
||||
}
|
||||
|
||||
// SetInstallationCodeResolver sets a function to call to resolve the installation code
|
||||
|
|
Loading…
Reference in a new issue