security audit fixes: task ID 12: remove /api/account/token/ method
This commit is contained in:
merelendor
parent
444da1fddf
commit
0e3fe5fd8a
@ -2598,12 +2598,14 @@ switch($PARAM_1)
|
|||||||
{
|
{
|
||||||
switch($PARAM_2)
|
switch($PARAM_2)
|
||||||
{
|
{
|
||||||
|
/* DEPRECATED & DISABLED due to security reasons
|
||||||
case "token":
|
case "token":
|
||||||
{
|
{
|
||||||
print \Bitrix\Main\Web\JWT::encode(["acc_number" => $REQ['acc_number']], $secret, 'HS256', null, null);
|
print \Bitrix\Main\Web\JWT::encode(["acc_number" => $REQ['acc_number']], $secret, 'HS256', null, null);
|
||||||
die();
|
die();
|
||||||
}
|
}
|
||||||
break;
|
break;
|
||||||
|
*/
|
||||||
|
|
||||||
case "recovery":
|
case "recovery":
|
||||||
{
|
{
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user