AJXP_Utils: Make sure to remove = from base64encoded string when generating random string.

cdujeu · cdujeu · commit 545910c411b8 · 2015-04-07T11:20:44.000+02:00
diff --git a/core/src/core/classes/class.AJXP_Utils.php b/core/src/core/classes/class.AJXP_Utils.php
@@ -1945,7 +1945,7 @@ public static function generateRandomString($length = 24, $complexChars = false)
         if (function_exists('openssl_random_pseudo_bytes') && USE_OPENSSL_RANDOM && !$complexChars) {
             $password = base64_encode(openssl_random_pseudo_bytes($length, $strong));
             if($strong == TRUE)
-                return substr(str_replace(array("/","+"), "", $password), 0, $length); //base64 is about 33% longer, so we need to truncate the result
+                return substr(str_replace(array("/","+","="), "", $password), 0, $length); //base64 is about 33% longer, so we need to truncate the result
         }
 
         //fallback to mt_rand if php < 5.3 or no openssl available

Original file line number	Diff line number	Diff line change
`@@ -1945,7 +1945,7 @@ public static function generateRandomString($length = 24, $complexChars = false)`
`1945`	`1945`	`if (function_exists('openssl_random_pseudo_bytes') && USE_OPENSSL_RANDOM && !$complexChars) {`
`1946`	`1946`	`$password = base64_encode(openssl_random_pseudo_bytes($length, $strong));`
`1947`	`1947`	`if($strong == TRUE)`
`1948`		`- return substr(str_replace(array("/","+"), "", $password), 0, $length); //base64 is about 33% longer, so we need to truncate the result`
	`1948`	`+ return substr(str_replace(array("/","+","="), "", $password), 0, $length); //base64 is about 33% longer, so we need to truncate the result`
`1949`	`1949`	`}`
`1950`	`1950`
`1951`	`1951`	`//fallback to mt_rand if php < 5.3 or no openssl available`