Fix the way tokens are generated to use stronger PRNG Change-Id: I4696a77b16c7495b525dfc2007908a6c175846a3 Signed-off-by: garciadeblas <gerardo.garciadeblas@telefonica.com>

commit: d8c3d8e403336a049e239bdc3239b16d5bdfe32a [log] [tgz]
author: garciadeblas <gerardo.garciadeblas@telefonica.com> Wed Jun 25 17:18:05 2025 +0200
committer: garciadeblas <gerardo.garciadeblas@telefonica.com> Thu Jun 26 20:09:52 2025 +0200
tree: 7f6d8f963acb6230785de13dd23766b7ac4a1845
parent: dcfa3d64851c555dcda1ec6b0aa5ea3237892b3a [diff]
diff --git a/osm_nbi/authconn_internal.py b/osm_nbi/authconn_internal.py
index ac157b8..fe86f16 100644
--- a/osm_nbi/authconn_internal.py
+++ b/osm_nbi/authconn_internal.py

@@ -32,6 +32,7 @@
 
 import logging
 import re
+import secrets
 
 from osm_nbi.authconn import (
     Authconn,
@@ -402,12 +403,8 @@
             user_data,
         )
 
-        token_id = "".join(
-            random_choice(
-                "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789"
-            )
-            for _ in range(0, 32)
-        )
+        # Generate a secure random 32 byte array base64 encoded for use in URLs
+        token_id = secrets.token_urlsafe(32)
 
         # projects = user_content.get("projects", [])
         prm_list = user_content.get("project_role_mappings", [])
commit	d8c3d8e403336a049e239bdc3239b16d5bdfe32a	[log] [tgz]
author	garciadeblas <gerardo.garciadeblas@telefonica.com>	Wed Jun 25 17:18:05 2025 +0200
committer	garciadeblas <gerardo.garciadeblas@telefonica.com>	Thu Jun 26 20:09:52 2025 +0200
tree	7f6d8f963acb6230785de13dd23766b7ac4a1845
parent	dcfa3d64851c555dcda1ec6b0aa5ea3237892b3a [diff]