Discource-C
/
discourse
mirror of https://github.com/discourse/discourse.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

single_sign_on: encode the payload with strict_encode64 which doesn't add extraneous newlines

This commit is contained in:
Michael Brown 2017-10-17 13:41:52 -04:00
parent 69920b7e60
commit 518e101ad6
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
lib/single_sign_on.rb
View File

@ -78,7 +78,7 @@ class SingleSignOn
end
def payload
payload = Base64.encode64(unsigned_payload)
payload = Base64.strict_encode64(unsigned_payload)
"sso=#{CGI::escape(payload)}&sig=#{sign(payload)}"
end