Use base32 for 2FA scratch token (#18384)

* Use base32 for 2FA scratch token * rename Secure* to Crypto*, add comments
2022-01-26 12:10:10 +08:00 · 2022-01-26 12:10:10 +08:00 · 49dd906753
commit 49dd906753
parent 4889ab52de
11 changed files with 41 additions and 37 deletions
--- a/modules/generate/generate.go
+++ b/modules/generate/generate.go
@ -60,7 +60,7 @@ func NewJwtSecretBase64() (string, error) {

 // NewSecretKey generate a new value intended to be used by SECRET_KEY.
 func NewSecretKey() (string, error) {
-	secretKey, err := util.RandomString(64)
+	secretKey, err := util.CryptoRandomString(64)
 	if err != nil {
 		return "", err
 	}