oyd
/
minio
6
1
Fork 0
Code Issues Pull Requests Releases Wiki Activity

fix: use constants for access/secret key min/max length (#3271)

Browse Source
master
Bala FA 8 years ago committed by Harshavardhana
parent c91d3791f9
commit 05dc52a206
2 changed files with 12 additions and 10 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 18
      cmd/access-key.go
  2. 4
      cmd/server_test.go

18
cmd/access-key.go
Unescape View File

@ -28,18 +28,20 @@ type credential struct {
} }
const ( const (
minioAccessID = 20 accessKeyMinLen = 5
minioSecretID = 40 accessKeyMaxLen = 20
secretKeyMinLen = 8
secretKeyMaxLen = 40
) )
// isValidAccessKey - validate access key for right length. // isValidAccessKey - validate access key for right length.
func isValidAccessKey(accessKey string) bool { func isValidAccessKey(accessKey string) bool {
return len(accessKey) >= 5 && len(accessKey) <= 20 return len(accessKey) >= accessKeyMinLen && len(accessKey) <= accessKeyMaxLen
} }
// isValidSecretKey - validate secret key for right length. // isValidSecretKey - validate secret key for right length.
func isValidSecretKey(secretKey string) bool { func isValidSecretKey(secretKey string) bool {
return len(secretKey) >= 8 && len(secretKey) <= 40 return len(secretKey) >= secretKeyMinLen && len(secretKey) <= secretKeyMaxLen
} }
// mustGenAccessKeys - must generate access credentials. // mustGenAccessKeys - must generate access credentials.
@ -69,11 +71,11 @@ func genAccessKeys() (credential, error) {
// genAccessKeyID - generate random alpha numeric value using only uppercase characters // genAccessKeyID - generate random alpha numeric value using only uppercase characters
// takes input as size in integer // takes input as size in integer
func genAccessKeyID() ([]byte, error) { func genAccessKeyID() ([]byte, error) {
alpha := make([]byte, minioAccessID) alpha := make([]byte, accessKeyMaxLen)
if _, err := rand.Read(alpha); err != nil { if _, err := rand.Read(alpha); err != nil {
return nil, err return nil, err
} }
for i := 0; i < minioAccessID; i++ { for i := 0; i < accessKeyMaxLen; i++ {
alpha[i] = alphaNumericTable[alpha[i]%byte(len(alphaNumericTable))] alpha[i] = alphaNumericTable[alpha[i]%byte(len(alphaNumericTable))]
} }
return alpha, nil return alpha, nil
@ -81,9 +83,9 @@ func genAccessKeyID() ([]byte, error) {
// genSecretAccessKey - generate random base64 numeric value from a random seed. // genSecretAccessKey - generate random base64 numeric value from a random seed.
func genSecretAccessKey() ([]byte, error) { func genSecretAccessKey() ([]byte, error) {
rb := make([]byte, minioSecretID) rb := make([]byte, secretKeyMaxLen)
if _, err := rand.Read(rb); err != nil { if _, err := rand.Read(rb); err != nil {
return nil, err return nil, err
} }
return []byte(base64.StdEncoding.EncodeToString(rb))[:minioSecretID], nil return []byte(base64.StdEncoding.EncodeToString(rb))[:secretKeyMaxLen], nil
} }

4
cmd/server_test.go
Unescape View File

@ -101,8 +101,8 @@ func (s *TestSuiteCommon) TestAuth(c *C) {
accessID, err := genAccessKeyID() accessID, err := genAccessKeyID()
c.Assert(err, IsNil) c.Assert(err, IsNil)
c.Assert(len(secretID), Equals, minioSecretID) c.Assert(len(secretID), Equals, secretKeyMaxLen)
c.Assert(len(accessID), Equals, minioAccessID) c.Assert(len(accessID), Equals, accessKeyMaxLen)
} }
func (s *TestSuiteCommon) TestBucketSQSNotification(c *C) { func (s *TestSuiteCommon) TestBucketSQSNotification(c *C) {

Write Preview
Loading…
Cancel
Save