From a8bf3ec857a502082d5c549e2aa446200e70dcec Mon Sep 17 00:00:00 2001
From: Fred Tempez <frederic.tempez@outlook.com>
Date: Fri, 6 Sep 2024 17:17:34 +0200
Subject: [PATCH] csrf key sur 64 octets

---
 core/class/router.class.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/class/router.class.php b/core/class/router.class.php
index dddfdda6..cb22a9b7 100644
--- a/core/class/router.class.php
+++ b/core/class/router.class.php
@@ -11,7 +11,7 @@ class core extends common
 		parent::__construct();
 		// Token CSRF
 		if (empty($_SESSION['csrf'])) {
-			$_SESSION['csrf'] = bin2hex(openssl_random_pseudo_bytes(128));
+			$_SESSION['csrf'] = bin2hex(openssl_random_pseudo_bytes(64));
 		}
 
 		// Fuseau horaire