• Home
• com.auth0
• auth0-spring-mvc
• 0.2.0
• source code
• NonceFactory.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.auth0.web.NonceFactory Maven / Gradle / Ivy

package com.auth0.web;

import java.util.Random;

/**
 * Create a token (nonce) that can be stored in State param
 * to correlate requests with callbacks and ensure validity.
 * Assists with CSRF prevention
 */
public class NonceFactory {

    private static final Random randomSource = new Random();

    public static String create() {
        byte random[] = new byte[16];
        StringBuilder buffer = new StringBuilder();
        randomSource.nextBytes(random);
        for (int j = 0; j < random.length; j++) {
            byte b1 = (byte) ((random[j] & 0xf0) >> 4);
            byte b2 = (byte) (random[j] & 0x0f);
            if (b1 < 10)
                buffer.append((char) ('0' + b1));
            else
                buffer.append((char) ('A' + (b1 - 10)));
            if (b2 < 10)
                buffer.append((char) ('0' + b2));
            else
                buffer.append((char) ('A' + (b2 - 10)));
        }
        return buffer.toString();
    }

}