cal/paper-dynasty-database
1
0
Fork 0
Code Issues 7 Pull Requests 4 Actions Packages Projects Releases Wiki Activity

fix: use constant-time comparison for bearer token validation (#8)

Browse Source 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
Cal Corum 2026-03-03 23:31:26 -06:00
parent 761c0a6dab
commit fb9c2d4e85
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
app/dependencies.py
View File

@ -1,4 +1,5 @@
import datetime
import hmac
import logging
import os
@ -39,7 +40,7 @@ if os.environ.get("TESTING") == "True":
def valid_token(token):
return token == AUTH_TOKEN
return hmac.compare_digest(token, AUTH_TOKEN)
def int_timestamp(datetime_obj: datetime) -> int: