aboutsummaryrefslogtreecommitdiff
path: root/app/Models/FormAuth.php
diff options
context:
space:
mode:
Diffstat (limited to 'app/Models/FormAuth.php')
-rw-r--r--app/Models/FormAuth.php2
1 files changed, 1 insertions, 1 deletions
diff --git a/app/Models/FormAuth.php b/app/Models/FormAuth.php
index 1da03f6d2..8943fa7f5 100644
--- a/app/Models/FormAuth.php
+++ b/app/Models/FormAuth.php
@@ -52,7 +52,7 @@ class FreshRSS_FormAuth {
public static function makeCookie(string $username, string $password_hash): string|false {
do {
- $token = sha1(FreshRSS_Context::systemConf()->salt . $username . uniqid('' . mt_rand(), true));
+ $token = hash('sha256', FreshRSS_Context::systemConf()->salt . $username . random_bytes(32));
$token_file = DATA_PATH . '/tokens/' . $token . '.txt';
} while (file_exists($token_file));
generated by cgit v1.2.3 (git 2.39.1) at 2026-02-10 12:29:08 +0000