Change the JtiReplayDetector to use a hash rather than a full URL.

Potherca · Potherca · commit 2b4cffe2a496 · 2022-11-11T15:27:18.000+01:00
diff --git a/solid/lib/JtiReplayDetector.php b/solid/lib/JtiReplayDetector.php
@@ -22,11 +22,13 @@ public function __construct(private DateInterval $interval, private IDBConnectio
 
     public function detect(string $jti, string $targetUri): bool
     {
+        $hash = sha1($targetUri);
+
         // @TODO: $this->rotateBuckets();
-        $has = $this->has($jti, $targetUri);
+        $has = $this->has($jti, $hash);
 
         if ($has === false) {
-            $this->store($jti, $targetUri);
+            $this->store($jti, $hash);
         }
 
         return $has;

Original file line number	Diff line number	Diff line change
`@@ -22,11 +22,13 @@ public function __construct(private DateInterval $interval, private IDBConnectio`
`22`	`22`
`23`	`23`	`public function detect(string $jti, string $targetUri): bool`
`24`	`24`	`{`
	`25`	`+ $hash = sha1($targetUri);`
	`26`	`+`
`25`	`27`	`// @TODO: $this->rotateBuckets();`
`26`		`- $has = $this->has($jti, $targetUri);`
	`28`	`+ $has = $this->has($jti, $hash);`
`27`	`29`
`28`	`30`	`if ($has === false) {`
`29`		`- $this->store($jti, $targetUri);`
	`31`	`+ $this->store($jti, $hash);`
`30`	`32`	`}`
`31`	`33`
`32`	`34`	`return $has;`