ElyBy-Mirror/oauth2-server
1
0
Fork 0
mirror of https://github.com/elyby/oauth2-server.git synced 2024-12-22 21:19:46 +05:30
Code Issues Packages Projects Releases Wiki Activity

Minor changes to changelog text

Browse Source
This commit is contained in:
Andrew Millington 2018-03-08 18:28:51 +00:00 committed by GitHub
parent 8c79776726
commit d5635cff4d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
installation.md
View File

@ -58,10 +58,10 @@ The `AuthorizationServer` accepts two kinds of encryption keys, a `string` passw
### `string` password ### `string` password
A `string` password is of unknown strength, to turn it into a strong encryption key the [PBKDF2](https://en.wikipedia.org/wiki/PBKDF2) key derivation function is used. A `string` password can be of variable strength depending on the password used. To turn it into a strong encryption key the [PBKDF2](https://en.wikipedia.org/wiki/PBKDF2) key derivation function is used.
This function derives an encryption key from a password and is slow by design, aimed to reduce vulnerability to brute force attacks. This function derives an encryption key from a password and is slow by design. It uses a lot of CPU resources for a fraction of a second, applying key stretching to the password to reduce vulnerability to brute force attacks.
To generate a `string` password for the `AuthorizationServer` run the following command in the terminal: To generate a `string` password for the `AuthorizationServer`, you can run the following command in the terminal:
~~~ shell ~~~ shell
php -r 'echo base64_encode(random_bytes(32)), PHP_EOL;' php -r 'echo base64_encode(random_bytes(32)), PHP_EOL;'