From 890d06ac04dde336abe670d559e6ea89007c9884 Mon Sep 17 00:00:00 2001
From: Sam <sam.saffron@gmail.com>
Date: Wed, 26 Feb 2014 09:44:41 +1100
Subject: [PATCH] FEATURE: change SSO to use sha256 HMAC, which is more secure

---
 lib/single_sign_on.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/single_sign_on.rb b/lib/single_sign_on.rb
index 4c7c3dd1553..61406b6b810 100644
--- a/lib/single_sign_on.rb
+++ b/lib/single_sign_on.rb
@@ -43,7 +43,7 @@ class SingleSignOn
   end
 
   def sign(payload)
-    Digest::SHA2.hexdigest(payload + sso_secret)
+    OpenSSL::HMAC.hexdigest("sha256", sso_secret, payload)
   end