PayPal creates salt for nonces longer than 40 chars #71

Open
terrencegf opened this Issue Apr 19, 2012 · 1 comment

Comments

Projects
None yet
2 participants
@terrencegf

PayPal recently upgraded their OpenID service, and as part of this update they now use very long salt values, for example, "0e00b1a53a40de0a558c8378b4c51f3d58e4b90d845292226741797e9edb8dcb". This string is longer than 40 characters and thus does not work with current nonce salt column which is set to 40 characters.

The fix is to change "salt CHAR(40)" to something larger (I'm using "salt CHAR(80)") in the following files:

Auth/OpenID/MDB2Store.php (also need to change "salt" => array(... "length" => 40,...);)
Auth/OpenID/MySQLStore.php
Auth/OpenID/PostgreSQLStore.php
Auth/OpenID/SQLiteStore.php

@marcoceppi

This comment has been minimized.

Show comment Hide comment
@marcoceppi

marcoceppi Aug 3, 2012

Member

If you create a merge request I'd be happy to include this.

Member

marcoceppi commented Aug 3, 2012

If you create a merge request I'd be happy to include this.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment