cerc-io/lotus
10
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 27 Wiki Activity

auth: Actually generate API secrets

Browse Source
This commit is contained in:
Łukasz Magiera 2019-07-23 22:10:06 +02:00
parent 16353dfebe
commit 3c9f88d043
1 changed files with 9 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
node/api.go
View File

@ -2,6 +2,9 @@ package node
import ( import (
"context" "context"
"crypto/rand"
"io"
"io/ioutil"
"github.com/filecoin-project/go-lotus/api" "github.com/filecoin-project/go-lotus/api"
"github.com/filecoin-project/go-lotus/build" "github.com/filecoin-project/go-lotus/build"
@ -61,9 +64,14 @@ func (a *API) AuthNew(ctx context.Context, perms []string) ([]byte, error) {
if err != nil { if err != nil {
log.Warn("Generating new API secret") log.Warn("Generating new API secret")
sk, err := ioutil.ReadAll(io.LimitReader(rand.Reader, 32))
if err != nil {
return nil, err
}
key = types.KeyInfo{ key = types.KeyInfo{
Type: "jwt-hmac-secret", Type: "jwt-hmac-secret",
PrivateKey: make([]byte, 32), PrivateKey: sk,
} }
if err := a.Keystore.Put(JWTSecretName, key); err != nil { if err := a.Keystore.Put(JWTSecretName, key); err != nil {