]> git.proxmox.com Git - pve-access-control.git/blobdiff - PVE/AccessControl.pm
projects / pve-access-control.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
spice: use lowercase hostname in ticktet signature
[pve-access-control.git] / PVE / AccessControl.pm
diff --git a/PVE/AccessControl.pm b/PVE/AccessControl.pm
index bb109e38a660af2bb088861f275ccca25fd481bf..ab5e52e1ff95db0127d56d604fe7b626823fd438 100644 (file)
--- a/PVE/AccessControl.pm
+++ b/PVE/AccessControl.pm
@@ -238,7 +238,7 @@ sub assemble_spice_ticket {
     # Note: RSA signature are too long (>=256 charaters) and makes problems with remote-viewer
 
     my $secret = &$get_csrfr_secret();
-    my $plain = "pvespiceproxy:$timestamp:$vmid:$node";
+    my $plain = "pvespiceproxy:$timestamp:$vmid:" . lc($node);
 
     # produces 40 characters
     my $sig = unpack("H*", Digest::SHA::sha1($plain, &$get_csrfr_secret()));
Access control framework