fix(auth): relax parameter validation in JWT login
Some checks failed
ci / ci (push) Failing after 0s
Some checks failed
ci / ci (push) Failing after 0s
Changed the validation for the 'key' parameter from ALPHANUM to RAW in the JWT login method. This allows more flexible key formats, accommodating a wider range of authentication schemes. Ensure existing keys are compatible with the broader validation.
This commit is contained in:
parent
92ed01adc5
commit
a757e87eff
1 changed files with 1 additions and 1 deletions
2
auth.php
2
auth.php
|
@ -139,7 +139,7 @@ class auth_plugin_jwt extends auth_plugin_base {
|
|||
public function user_login_jwt() {
|
||||
global $SESSION, $CFG, $USER;
|
||||
|
||||
$keyvalue = required_param('key', PARAM_ALPHANUM);
|
||||
$keyvalue = required_param('key', PARAM_RAW);
|
||||
$wantsurl = optional_param('wantsurl', '', PARAM_URL);
|
||||
|
||||
if (!empty($wantsurl)) {
|
||||
|
|
Loading…
Reference in a new issue