Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP

Loading…

PayPal creates salt for nonces longer than 40 chars #71

Open
terrencegf opened this Issue · 1 comment

2 participants

@terrencegf

PayPal recently upgraded their OpenID service, and as part of this update they now use very long salt values, for example, "0e00b1a53a40de0a558c8378b4c51f3d58e4b90d845292226741797e9edb8dcb". This string is longer than 40 characters and thus does not work with current nonce salt column which is set to 40 characters.

The fix is to change "salt CHAR(40)" to something larger (I'm using "salt CHAR(80)") in the following files:

Auth/OpenID/MDB2Store.php (also need to change "salt" => array(... "length" => 40,...);)
Auth/OpenID/MySQLStore.php
Auth/OpenID/PostgreSQLStore.php
Auth/OpenID/SQLiteStore.php

@marcoceppi
Collaborator

If you create a merge request I'd be happy to include this.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Something went wrong with that request. Please try again.