shihaam/akaunting
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #2202 from sevannerse/signed-route-validation

Browse Source 
makes possible right validation for temporary signed routes
This commit is contained in:
Cüneyt Şentürk 2021-07-29 15:59:55 +03:00 committed by GitHub
commit 420089d90a
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
app/Http/Middleware/ValidateSignature.php
View File

@ -54,6 +54,8 @@ class ValidateSignature
$original = rtrim($url . '?' . Arr::query( $original = rtrim($url . '?' . Arr::query(
Arr::only($request->query(), ['company_id']) Arr::only($request->query(), ['company_id'])
) . Arr::query(
Arr::only($request->query(), ['expires'])
), '?'); ), '?');
$signature = hash_hmac('sha256', $original, call_user_func(function () { $signature = hash_hmac('sha256', $original, call_user_func(function () {