Browse Source

Merge pull request #4 from Tanmaykaturi/fix/semgrep-jwt-python-hardcoded-secret-86-0KP6MpGxfL

fix: semgrep-jwt-python-hardcoded-secret
pull/14752/head
Tanmaykaturi 6 months ago
committed by GitHub
parent
commit
012cd73b1f
No known key found for this signature in database GPG Key ID: B5690EEEBB952194
  1. 3
      docs_src/security/tutorial004_an_py39.py

3
docs_src/security/tutorial004_an_py39.py

@ -1,3 +1,4 @@
import os
from datetime import datetime, timedelta, timezone
from typing import Annotated, Union
@ -10,7 +11,7 @@ from pydantic import BaseModel
# to get a string like this run:
# openssl rand -hex 32
SECRET_KEY = "09d25e094faa6ca2556c818166b7a9563b93f7099f6f0f4caa6cf63b88e8d3e7"
SECRET_KEY = os.environ.get("SECRET_KEY", "09d25e094faa6ca2556c818166b7a9563b93f7099f6f0f4caa6cf63b88e8d3e7")
ALGORITHM = "HS256"
ACCESS_TOKEN_EXPIRE_MINUTES = 30

Loading…
Cancel
Save