haskell/yesod-auth-oauth2
1
0
Fork 0
mirror of https://github.com/freckle/yesod-auth-oauth2.git synced 2026-01-31 05:10:25 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
27cad251ab
yesod-auth-oauth2/src/Yesod/Auth/OAuth2
History
patrick brisbin cd3875b797 Strengthen random state token generation 
Previously:

- System.Random, which seeds from system time (possible attack)
- 30 characters, a-z (low entropy)

Now:

- Crypto.Random, accepted as "cryptographically secure"
- 64 random bytes, Base64-encoded

cryptonite was already a transitive dependency, so there is really no
downside to this.

Fixes #132.
2020-08-20 11:38:20 -04:00
..
AzureAD.hs Add AzureAD provider 2019-03-09 09:14:50 -05:00
BattleNet.hs Update LTS and dependencies 2018-04-21 10:49:05 -04:00
Bitbucket.hs Set the ByteString body at userResponse 2018-02-12 09:10:34 -08:00
Dispatch.hs Strengthen random state token generation 2020-08-20 11:38:20 -04:00
ErrorResponse.hs Redirect on OAuth2 errors, not permissionDenied 2018-09-18 17:25:00 -04:00
EveOnline.hs Update LTS and dependencies 2018-04-21 10:49:05 -04:00
Exception.hs Implement different exceptions for different cases 2018-09-19 07:55:38 -04:00
GitHub.hs Create properly-named GitHub module 2018-07-30 11:46:02 -04:00
GitLab.hs Add GitLab support 2018-07-29 09:45:00 -04:00
Google.hs Fix Google Plugin 2018-02-13 08:59:01 -05:00
Nylas.hs Implement different exceptions for different cases 2018-09-19 07:55:38 -04:00
Prelude.hs Brittany 2019-12-03 20:27:15 -05:00
Salesforce.hs Set the ByteString body at userResponse 2018-02-12 09:10:34 -08:00
Slack.hs Implement different exceptions for different cases 2018-09-19 07:55:38 -04:00
Spotify.hs Set the ByteString body at userResponse 2018-02-12 09:10:34 -08:00
Upcase.hs Set the ByteString body at userResponse 2018-02-12 09:10:34 -08:00
WordPressDotCom.hs Cleanup WordPress plugin 2020-08-19 11:17:22 -04:00