Merge pull request #584 from ONLYOFFICE/hotfix/v7.3.2

Merger hotfix/v7.3.2 into hotfix/v7.3.3
Generated JWT secret is too small for HMAC SHA256 (#582 )
2026-04-07 14:01:38 +08:00 · 2023-02-07 13:02:08 +05:00 · 2023-02-07 11:02:40 +05:00 · 2023-02-02 20:41:49 +05:00
1 changed files with 1 additions and 1 deletions
--- a/run-document-server.sh
+++ b/run-document-server.sh
@ -87,7 +87,7 @@ fi

 [ -z $JWT_SECRET ] && JWT_MESSAGE='JWT is enabled by default. A random secret is generated automatically. Run the command "docker exec $(sudo docker ps -q) sudo documentserver-jwt-status.sh" to get information about JWT.'

-JWT_SECRET=${JWT_SECRET:-$(pwgen -s 20)}
+JWT_SECRET=${JWT_SECRET:-$(pwgen -s 32)}
 JWT_HEADER=${JWT_HEADER:-Authorization}
 JWT_IN_BODY=${JWT_IN_BODY:-false}