Software: Apache/2.4.41 (Ubuntu). PHP/8.0.30 uname -a: Linux apirnd 5.4.0-204-generic #224-Ubuntu SMP Thu Dec 5 13:38:28 UTC 2024 x86_64 uid=33(www-data) gid=33(www-data) groups=33(www-data) Safe-mode: OFF (not secure) /usr/local/lib/node_modules/wonlog/node_modules/lusca/lib/ drwxr-xr-x | |
| Viewing file: Select action/file-type: 'use strict';
var crypto = require('crypto'),
timeSafeCompare = require('tsscmp');
var LENGTH = 10;
function create(req, secretKey) {
var session = req.session;
if (session === undefined) {
throw new Error('lusca requires req.session to be available in order to maintain state');
}
var secret = session[secretKey];
// Save the secret for validation
if (!secret) {
session[secretKey] = crypto.pseudoRandomBytes(LENGTH).toString('base64');
secret = session[secretKey];
}
return {
secret: secret,
token: tokenize(salt(LENGTH), secret),
validate: function validate(req, token) {
if (typeof token !== 'string') {
return false;
}
return timeSafeCompare(token, tokenize(token.slice(0, LENGTH),
req.session[secretKey]));
}
};
}
function tokenize(salt, secret) {
return salt + crypto.createHash('sha1').update(salt + secret).digest('base64');
}
function salt(len) {
var str = '',
chars = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789';
for (var i = 0; i < len; i++) {
str += chars[Math.floor(Math.random() * chars.length)];
}
return str;
}
module.exports = {
create: create
};
|
:: Command execute :: | |
--[ c99shell v. 2.5 [PHP 8 Update] [24.05.2025] | Generation time: 0.0057 ]-- |