Increase length of OTP secret

fixes/small-otp-secret-length-4.2
David Roetzel 2024-09-27 12:05:23 +02:00
parent f9a929ed5c
commit 393a072c6f
No known key found for this signature in database
1 changed files with 2 additions and 1 deletions

View File

@ -67,7 +67,8 @@ class User < ApplicationRecord
ACTIVE_DURATION = ENV.fetch('USER_ACTIVE_DAYS', 7).to_i.days.freeze ACTIVE_DURATION = ENV.fetch('USER_ACTIVE_DAYS', 7).to_i.days.freeze
devise :two_factor_authenticatable, devise :two_factor_authenticatable,
otp_secret_encryption_key: Rails.configuration.x.otp_secret otp_secret_encryption_key: Rails.configuration.x.otp_secret,
otp_secret_length: 26
devise :two_factor_backupable, devise :two_factor_backupable,
otp_number_of_backup_codes: 10 otp_number_of_backup_codes: 10