Permalink
Browse files

Increase strength of CSRF token

  • Loading branch information...
1 parent 992f378 commit a843429ccf32bb5f7385477191977b275ec2c054 @ozataman ozataman committed Apr 14, 2011
Showing with 1 addition and 1 deletion.
  1. +1 −1 src/Snap/Extension/Session.hs
@@ -61,7 +61,7 @@ class MonadSnap m => MonadSession m where
csrf <- liftM sesCSRFToken getSessionShell
case csrf of
Nothing -> do
- t <- liftIO $ randomToken 15
+ t <- liftIO $ randomToken 35
updateSessionShell (\s -> s { sesCSRFToken = Just t })
return t
Just t -> return t

0 comments on commit a843429

Please sign in to comment.