Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Form Signatures listing different fields between form render and submit, hashing not working #998
I was trying to use form signing when I ran into issues:
original field (1 out of 14 others): 'parent.mobile'
mangled field (1 out of 14 others): 'parensfsdfsdfsdfsdft.mobile'
Have I misunderstood how this is supposed to work? Should the field names make a difference to the hash?
Okay, after some help from @dmondark, found that changing the default blowfish hash to an md5 hash allows me to detect the changes in fields. I'll just be making my own app extension for
The other two things mentioned are still problems though: 1) what's the best way to censor
Found another issue: if a form is a PUT, then the
@cinaeco First off thanks for reporting these issues. As a rule of thumb it's always best to only discuss one issue per ticket. That allows us to have a cleaner discussion about the issues as everybody knows what is being talked about.
However, I wanted to ask you if you can provide the changes you made to make form signatures work for you as a Pull Request (and reference this issue)?