ag-admin
/
OpenSlides
0
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Merge pull request #5791 from FinnStutzenstein/pwGeneration 

Change PW generation to a secure method
This commit is contained in:
Emanuel Schütze 2021-01-08 15:37:38 +01:00 committed by GitHub
parent ea277adf9e 183c511046
commit 8542817129
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
client/src/app/core/repositories/users/user-repository.service.ts
View File

@ -181,9 +181,11 @@ export class UserRepositoryService extends BaseRepository<ViewUser, User, UserTi
*/
public getRandomPassword(length: number = 10): string {
let pw = '';
const array = new Uint8Array(length);
window.crypto.getRandomValues(array);
const characters = 'abcdefghijkmnpqrstuvwxyzABCDEFGHJKLMNPQRSTUVWXYZ23456789';
for (let i = 0; i < length; i++) {
pw += characters.charAt(Math.floor(Math.random() * characters.length));
pw += characters.charAt(array[i] % characters.length);
}
return pw;
}