Change default generator for client_id and client_secret: now use a safe set of characters that don't need escaping. That way we should avoid problems with many dummy client implementations

synasius · synasius · commit 7ad5e00abc91 · 2013-09-11T17:02:18.000+02:00
diff --git a/oauth2_provider/generators.py b/oauth2_provider/generators.py
@@ -1,8 +1,11 @@
-from oauthlib.common import CLIENT_ID_CHARACTER_SET, generate_client_id as oauthlib_generate_client_id
+from oauthlib.common import generate_client_id as oauthlib_generate_client_id
 
 from .settings import oauth2_settings
 
 
+CLIENT_ID_CHARACTER_SET = r'_-.:;=?!@0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz'
+
+
 class BaseHashGenerator(object):
     """
     All generators should extend this class overriding `.hash()` method.
@@ -23,7 +26,7 @@ def hash(self):
 
 class ClientSecretGenerator(BaseHashGenerator):
     def hash(self):
-        return oauthlib_generate_client_id(length=128)
+        return oauthlib_generate_client_id(length=128, chars=CLIENT_ID_CHARACTER_SET)
 
 
 def generate_client_id():
