Misleading token ID format
Today one of my clients encountered the following error message:
[notice] Bad (or expired) token 1572911777_-26512
And they assumed that the error was that there was a minus sign in the token ID. That's incorrect of course, but it means the format is confusing, I think our Token IDs should not have this -
symbol. It comes from here:
lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Lib/OneTimeToken.pm
68: $infos->{_utime} . '_' . unpack( 's', Crypt::URandom::urandom(2) );
@guimard if that's alright with you I will replace that 's'
with a 'S'
so that the token id contains numbers in the 0..65535 range instead of -32768..32767