root/golib
1
0
Fork 0
mirror of https://github.com/therootcompany/golib.git synced 2026-04-24 04:38:02 +00:00
Code Issues Projects Releases Wiki Activity

fix(auth/csvauth): ID() returns Name only, not Name~hashID for tokens

Browse Source 
Principal identity is the subject (who), not the credential instance
(which token). The hashID suffix was an internal cache fingerprint that
leaked into the public ID. Callers that need to distinguish individual
token instances must use a separate mechanism.

TSV serialization in ToRecord() still writes Name~hashID when hashID is
set so the credential file round-trips correctly.
This commit is contained in:
AJ ONeal 2026-04-13 22:57:21 -06:00
parent fbb4a14620
commit 02fef67e53
No known key found for this signature in database
1 changed files with 0 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
auth/csvauth/credential.go
View File

@ -57,9 +57,6 @@ type Credential struct {
}
func (c *Credential) ID() string {
if c.Purpose == PurposeToken {
return c.Name + hashIDSep + c.hashID
}
return c.Name
}