大猩猩会话无效密钥大小

When I create new cookie store and do like:

var store = sessions.NewCookieStore(securecookie.GenerateRandomKey(1), securecookie.GenerateRandomKey(2))

I've got the the error message

crypto/aes: invalid key size 2

Why what do I wrong? When I look at the function definition

// NewCookieStore returns a new CookieStore.
//
// Keys are defined in pairs to allow key rotation, but the common case is
// to set a single authentication key and optionally an encryption key.
//
// The first key in a pair is used for authentication and the second for
// encryption. The encryption key can be set to nil or omitted in the last
// pair, but the authentication key is required in all pairs.
//
// It is recommended to use an authentication key with 32 or 64 bytes.
// The encryption key, if set, must be either 16, 24, or 32 bytes to select
// AES-128, AES-192, or AES-256 modes.
//
// Use the convenience function securecookie.GenerateRandomKey() to create
// strong keys.
func NewCookieStore(keyPairs ...[]byte) *CookieStore {
    return &CookieStore{
        Codecs: securecookie.CodecsFromPairs(keyPairs...),
        Options: &Options{
            Path:   "/",
            MaxAge: 86400 * 30,
        },
    }
}

I think pass the right parameter.

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
doujia2386 2014-10-03 19:12
关注
From the documentation you linked:

// It is recommended to use an authentication key with 32 or 64 bytes.

// The encryption key, if set, must be either 16, 24, or 32 bytes to select AES-128, AES-192, or AES-256 modes.

So you could use something like this:

//replace 16 with 24 for 192bit or 32 for 256bit. var store = sessions.NewCookieStore(securecookie.GenerateRandomKey(16), securecookie.GenerateRandomKey(16))

// edit

Also @elithrar made a very valid point in comments, so keep it in mind:

Also note that restarting your application means that it cannot read existing sessions (as new keys are generated every time) when using this method.
本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

大猩猩会话无效密钥大小
2014-10-03 19:06

回答 1 已采纳 From the documentation you linked: // It is recommended to use an authentication key with 32 o
解密大猩猩会话Cookie数据
2016-09-25 19:18

回答 1 已采纳 Looking at the docs - gorilla provides a secure cookie package. Depending on your apps architectu
大猩猩Mux会话名称
2015-03-02 19:25

回答 1 已采纳 The session data is stored in the client's cookies. So the session you retrieve with store.Get(r,
c语言扔香蕉的大猩猩完整版.zip
2023-06-05 20:18

c语言扔香蕉的大猩猩完整版
Golang：检索大猩猩/会话Cookie
2015-08-06 21:06

回答 1 已采纳 This is how gorilla's sessions api saves the session - https://github.com/gorilla/sessions/blob/ma
重定向后Golang大猩猩会话保留表单数据
2013-11-04 17:45

回答 1 已采纳 Your problem is that you're working with values of type interface{}, which is the generic type and
Internet Explorer中的Go和大猩猩会话
2013-06-11 20:57

回答 2 已采纳 You probably need to define the cookie's path in your options. The following options struct should
redistore:使用Redis进行大猩猩会话的会话存储后端
2021-05-05 08:04

一个会话存储后端的- 。要求取决于 Redis库。安装 go get gopkg.in/boj/redistore.v1 文献资料在上。有关基础接口的完整文档，请参见。例子 // Fetch new store. store , err := NewRediStore ( 10 , "tcp...
Golang：大猩猩课程对cors无效
2015-07-16 08:06

回答 2 已采纳 The problem is that in the client the requests need to have withCredentials = true and after that
为什么此大猩猩会话代码不起作用？
2015-03-10 20:07

回答 1 已采纳 thanks to JimB for pointing out the painfully obvious, I needed to add a call to session.Save(r, w
大猩猩/会话在服务器重启之间持续存在？
2017-07-19 17:09

回答 1 已采纳 I would have had the same assumptions you did, and browsing the source, it looks like it should wo
etcdstore:使用etcd进行大猩猩会话的会话存储后端
2021-04-02 20:11

一个会话存储后端的- 。安装 go get github.com/ryicoh/etcdstore 文献资料有关基础接口的完整文档，请参见。例子 package main import ( "github.com/ryicoh/etcdstore" clientv3 "go.etcd.io/etcd/client/...
使用大猩猩会话时，golang中的会话变量未保存
2014-02-18 21:24

回答 4 已采纳 First up: you should never, ever, use md5 to hash passwords. Read this article on why, and then us
屏幕触控技术：揭秘大猩猩玻璃
2020-08-31 00:50

对于最近的各种移动设备关于屏幕的分析多之又多，有很多iPS Amoled SLCD的面板争论，不过市面上推出了一批OGS 全贴合屏幕，轻薄，透光性好，又有触控图标于指尖的感觉。
c语言扔香蕉的大猩猩.rar
2023-12-27 19:44

ssm整合开发，小程序毕业设计、期末大作业、课程设计、高分必看，下载下来，简单部署，就可以使用。包含：项目源码、数据库脚本、软件工具等，该项目可以作为毕设、课程设计使用，前后端代码都在里面。该系统...
mongostore:大猩猩的会话存储使用MongoDB的实现
2021-05-07 15:43

大猩猩的会话存储使用MongoDB的实现安装只需使用go get。 go get gopkg.in/go-playground/mongostore.v4 或更新 go get -u gopkg.in/go-playground/mongostore.v4 然后将包导入到您自己的代码中。 import "gopkg...
3-6岁绘本第3课大猩猩.ppt
2021-03-04 09:28

3-6岁绘本第3课大猩猩
大猩猩：大猩猩编程语言
2021-02-08 12:28

大猩猩编程语言Gorilla是一种微小的，动态类型化的灵活编程语言最小化的可执行文件大小只有大约2 MB！在上查看更多下载播放学分：图标：
c语言扔香蕉的大猩猩.zip
2024-04-02 16:19

c语言扔香蕉的大猩猩c语言扔香蕉的大猩猩c语言扔香蕉的大猩猩c语言扔香蕉的大猩猩c语言扔香蕉的大猩猩
大猩猩优化.zip
2023-07-21 18:08

大猩猩优化
没有解决我的问题, 去提问

悬赏问题

¥20 求用stm32f103c6t6在lcd1206上显示Door is open和password：
¥15 apm2.8飞控罗盘bad health，加速度计校准失败
¥15 求解O-S方程的特征值问题给出边界层布拉休斯平行流的中性曲线
¥15 谁有desed数据集呀
¥20 手写数字识别运行c仿真时，程序报错错误代码sim211-100
¥15 关于#hadoop#的问题
¥15 (标签-Python|关键词-socket)
¥15 keil里为什么main.c定义的函数在it.c调用不了
¥50 切换TabTip键盘的输入法
¥15 可否在不同线程中调用封装数据库操作的类

大猩猩会话无效密钥大小

1条回答 默认 最新

悬赏问题

1条回答默认最新