From a899d179a5d68904e718c3f92580373f81e7ec2c Mon Sep 17 00:00:00 2001 From: Jaime Perez <jaime.perez@uninett.no> Date: Thu, 3 Jul 2014 16:09:44 +0200 Subject: [PATCH] Generate track IDs in a better way. Solves #58. --- lib/SimpleSAML/Session.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/lib/SimpleSAML/Session.php b/lib/SimpleSAML/Session.php index bf0b8e0fb..ab0fe845a 100644 --- a/lib/SimpleSAML/Session.php +++ b/lib/SimpleSAML/Session.php @@ -147,7 +147,7 @@ class SimpleSAML_Session { $sh = SimpleSAML_SessionHandler::getSessionHandler(); $this->sessionId = $sh->newSessionId(); - $this->trackid = substr(md5(uniqid(rand(), true)), 0, 10); + $this->trackid = SimpleSAML_Utilities::stringToHex(SimpleSAML_Utilities::generateRandomBytes(5)); $this->dirty = TRUE; -- GitLab