Repair generation

polaris-rbx · Aug 2, 2020 · ea8681d · ea8681d
1 parent ba32783
commit ea8681d
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 4 deletions.
diff --git a/package.json b/package.json
@@ -1,6 +1,6 @@
 {
   "name": "polaris-website",
-  "version": "1.1.0",
+  "version": "1.1.1",
   "description": "The Polaris website and panel designed to work with the Polaris bot (polaris-bot package)",
   "main": "src/server/index.js",
   "scripts": {

diff --git a/src/server/csrf.js b/src/server/csrf.js
@@ -9,13 +9,13 @@ function generateToken (length = 100){
 			if (err) {
 				return reject(err);
 			}
-			const token = buffer.toString("hex");
+			const token = buffer.toString("base64");
 			return resolve(token.substr(0, length));
 		});
 	}));
 }
 const protectedMethods = ["post", "patch", "put", "delete"];
-module.exports = function (req, res, next) {
+module.exports = async function (req, res, next) {
 	function fail () {
 		return res.status(400).send({
 			error: {
@@ -36,7 +36,7 @@ module.exports = function (req, res, next) {
 	} else {
 		// It's a get
 		if (!req.cookies["CSRF-Token"]) {
-			res.cookie("CSRF-Token", generateToken(20), {
+			res.cookie("CSRF-Token", await generateToken(20), {
 				maxAge: 172800000,
 				sameSite: "strict",
 				httpOnly: false