feat(core): Use sha256 instead of sha1 to make activation keys

freelawproject · Jun 9, 2023 · 562a9bd · 562a9bd
1 parent cb1cc69
commit 562a9bd
Showing 1 changed file with 3 additions and 3 deletions.
diff --git a/bc/core/utils/crypto.py b/bc/core/utils/crypto.py
@@ -6,8 +6,8 @@ def sha1_activation_key(s):
     """Make an activation key for a user
 
     :param s: The data to use with the salt to make the activation key
-    :return: A SHA1 activation key
+    :return: A SHA256 activation key
     """
-    salt = hashlib.sha1(str(random.random()).encode()).hexdigest()[:5]
-    activation_key = hashlib.sha1((salt + s).encode()).hexdigest()
+    salt = hashlib.sha256(str(random.random()).encode()).hexdigest()[:5]
+    activation_key = hashlib.sha256((salt + s).encode()).hexdigest()
     return activation_key