D13167.id31827.diff
No OneTemporary
Actions

Size

594 B

Referenced Files

None

Subscribers

None

D13167.id31827.diff
View Options

	diff --git a/src/applications/people/storage/PhabricatorUser.php b/src/applications/people/storage/PhabricatorUser.php
	--- a/src/applications/people/storage/PhabricatorUser.php
	+++ b/src/applications/people/storage/PhabricatorUser.php
	@@ -355,7 +355,8 @@
	// discussion in T3684.
	$token = $this->getRawCSRFToken();
	$hash = PhabricatorHash::digest($token, $salt);
	- return 'B@'.$salt.substr($hash, 0, self::CSRF_TOKEN_LENGTH);
	+ return self::CSRF_BREACH_PREFIX.$salt.substr(
	+ $hash, 0, self::CSRF_TOKEN_LENGTH);
	}

	public function validateCSRFToken($token) {