mirror of
https://codeberg.org/forgejo/forgejo.git
synced 2024-11-14 14:49:32 +01:00
aa23f477b7
- Switch to use `CryptoRandomBytes` instead of `CryptoRandomString`, OAuth's secrets are copied pasted and don't need to avoid dubious characters etc. - `CryptoRandomBytes` gives ![2^256 = 1.15 * 10^77](https://render.githubusercontent.com/render/math?math=2^256%20=%201.15%20\cdot%2010^77) `CryptoRandomString` gives ![62^44 = 7.33 * 10^78](https://render.githubusercontent.com/render/math?math=62^44%20=%207.33%20\cdot%2010^78) possible states. - Add a prefix, such that code scanners can easily grep these in source code. - 32 Bytes + prefix
24 lines
526 B
Go
24 lines
526 B
Go
// Copyright 2019 The Gitea Authors. All rights reserved.
|
|
// Use of this source code is governed by a MIT-style
|
|
// license that can be found in the LICENSE file.
|
|
|
|
package secret
|
|
|
|
import (
|
|
"testing"
|
|
|
|
"github.com/stretchr/testify/assert"
|
|
)
|
|
|
|
func TestEncryptDecrypt(t *testing.T) {
|
|
var hex string
|
|
var str string
|
|
|
|
hex, _ = EncryptSecret("foo", "baz")
|
|
str, _ = DecryptSecret("foo", hex)
|
|
assert.Equal(t, str, "baz")
|
|
|
|
hex, _ = EncryptSecret("bar", "baz")
|
|
str, _ = DecryptSecret("foo", hex)
|
|
assert.NotEqual(t, str, "baz")
|
|
}
|