Skip to content
This repository has been archived by the owner on Mar 31, 2024. It is now read-only.

Commit

Permalink
[server/xsrf] shorten the xsrf-token, 512 character is overkill
Browse files Browse the repository at this point in the history
  • Loading branch information
spalger committed Nov 10, 2015
1 parent b4517cb commit 7eefb18
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion src/server/config/schema.js
View file
Original file line number Diff line number Diff line change
Expand Up @@ -42,7 +42,7 @@ module.exports = () => Joi.object({
otherwise: Joi.boolean().default(false)
}),
xsrf: Joi.object({
token: Joi.string().default(randomBytes(256).toString('hex')),
token: Joi.string().default(randomBytes(32).toString('hex')),
disableProtection: Joi.boolean().default(false),
}).default(),
}).default(),
Expand Down

0 comments on commit 7eefb18

Please sign in to comment.