| summaryrefslogtreecommitdiff |
diff options
| author | nsensfel <SpamShield0@noot-noot.org> | 2018-08-29 16:46:13 +0200 |
|---|---|---|
| committer | nsensfel <SpamShield0@noot-noot.org> | 2018-08-29 16:46:13 +0200 |
| commit | e1c7e78b4b4db2f818226faf58efff82fbdfeeaa (patch) | |
| tree | 40bcb27bcb157ac0301681ef365892a78efe904a /src/shared/struct | |
| parent | 9ffa08c3aad8e4f40b7f7d1e7845e5153f9c34ab (diff) | |
Updates TODOs, handles max health changes.
Diffstat (limited to 'src/shared/struct')
| -rw-r--r-- | src/shared/struct/shr_player.erl | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/src/shared/struct/shr_player.erl b/src/shared/struct/shr_player.erl index 13fa1ed..0843e87 100644 --- a/src/shared/struct/shr_player.erl +++ b/src/shared/struct/shr_player.erl @@ -89,9 +89,10 @@ %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% -spec secure_value (binary(), binary()) -> binary(). secure_value (Salt, Val) -> - % TODO: Maybe it would be a good idea to include the user's IP in there as - % well. This would ensure that sessions alway use the same server (and thus, - % the same caches), and make timed cache exploits easier to prevent. + % TODO [SECURITY][LOW]: Maybe it would be a good idea to include the user's + % IP in there as well. This would ensure that sessions alway use the same + % server (and thus, the same caches), and make timed cache exploits easier to + % prevent. SaltedVal = erlang:iolist_to_binary([Salt, Val]), HashedSaltedVal = crypto:hash(sha384, SaltedVal), |