Django-Auth-App 的 app_secret_key 和 secret_key 之间的区别
[英]Difference between app_secret_key and secret_key for Django-Auth-App
问题描述
For the python django package, django-duo-auth, the README shows the proper DUO CONFIG to be like so in settings.py:
对于 python django package,django-duo-auth,自述文件显示了正确的 DUO CONFIG,如下所示:
DUO_CONFIG = {
'DEFAULT': {
'HOST': '<api-host-url>',
'IKEY': '<integration_key>',
'AKEY': '<app_secret_key>',
'SKEY': '<secret_key>',
'FIRST_STAGE_BACKENDS': [
'django.contrib.auth.backends.ModelBackend',
]
}
}
HOST, IKEY, and SKEY make sense as they are attributes found in the Duo AUTH API, but I am confused as to what app_secret_key would mean. HOST、IKEY 和 SKEY 是有意义的,因为它们是 Duo AUTH API 中的属性,但我对 app_secret_key 的含义感到困惑。 Any suggestions?有什么建议么?
1 个解决方案
解决方案1
0 2021-11-08 17:43:17
Not sure if you are still having this issue, but for the sake of anyone running into this same question: The application's secret key is just a string that will be used as part of the request signing process during authentication.不确定您是否仍然遇到此问题,但为了任何人遇到同样的问题:应用程序的密钥只是一个字符串,将在身份验证期间用作请求签名过程的一部分。 In some of Duo's client libraries this gets generated for you automatically on a per-request basis, but duo_web doesn't.在 Duo 的一些客户端库中,它会根据每个请求自动为您生成,但duo_web不会。 You should just generate a random string of at least 40 characters and use that.您应该只生成至少 40 个字符的随机字符串并使用它。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.