From cac352ac3936af0685a32a195d94b4dc9db5f9c5 Mon Sep 17 00:00:00 2001
From: Mazharul Islam <mazhar.buet11@gmail.com>
Date: Mon, 18 May 2020 23:13:14 -0400
Subject: [PATCH] changing jwt secret key to random string

---
 src/main/java/com/app/identity/TokenUtil.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/main/java/com/app/identity/TokenUtil.java b/src/main/java/com/app/identity/TokenUtil.java
index 2207727..500032b 100644
--- a/src/main/java/com/app/identity/TokenUtil.java
+++ b/src/main/java/com/app/identity/TokenUtil.java
@@ -17,7 +17,7 @@ public class TokenUtil {
     private static final long VALIDITY_TIME_MS =  2 * 60 * 60 * 1000; // 2 hours  validity
     private static final String AUTH_HEADER_NAME = "Authorization";
 
-    private String secret="mrin";
+    private String secret = UUID.randomUUID().toString();
 
     public Optional<Authentication> verifyToken(HttpServletRequest request) {
       final String token = request.getHeader(AUTH_HEADER_NAME);