chamilo
/
chamilo-lms
mirror of https://github.com/chamilo/chamilo-lms/tree/1.11.x
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

LTI: Use received nonce in auth - refs BT#16379

Browse Source
pull/3114/head
Angel Fernando Quiroz Campos 6 years ago
parent fa33f5be0e
commit 46d51264e6
1 changed files with 5 additions and 1 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 6
      plugin/ims_lti/auth.php

6
plugin/ims_lti/auth.php
Unescape View File

@ -101,7 +101,11 @@ try {
$jwtContent['aud'] = $tool->getClientId(); $jwtContent['aud'] = $tool->getClientId();
$jwtContent['iat'] = time(); $jwtContent['iat'] = time();
$jwtContent['exp'] = time() + 60; $jwtContent['exp'] = time() + 60;
$jwtContent['nonce'] = md5(microtime().mt_rand()); $jwtContent['nonce'] = $nonce;
if (empty($nonce)) {
$jwtContent['nonce'] = md5(microtime().mt_rand());
}
// User info // User info
if ($tool->isSharingName()) { if ($tool->isSharingName()) {

Write Preview
Loading…
Cancel
Save