fix: set the length of generated user ids shorter

authcompanion · authcompanion · commit 11e3f15918a8 · 2025-05-08T17:36:30.000-04:00
diff --git a/key/admin.key.js b/key/admin.key.js
@@ -1,7 +1,7 @@
 import fastifyPlugin from "fastify-plugin";
 import config from "../config.js";
 import { writeFileSync } from "fs";
-import { createId } from "@paralleldrive/cuid2";
+import { init } from "@paralleldrive/cuid2";
 import { createHash } from "../utils/credential.js";
 import * as crypto from "crypto";
 import { eq } from "drizzle-orm";
@@ -29,6 +29,7 @@ const setupAdminKey = async function (fastify) {
     }
 
     //Create the default admin user in the Database, set the password to a random UUID as a placeholder
+    const createId = init({ length: 10 });
     const uuid = createId();
     const adminPwd = generatePassword();
     const hashPwd = await createHash(adminPwd);
diff --git a/services/admin/create.js b/services/admin/create.js
@@ -1,6 +1,6 @@
 import { createHash } from "../../utils/credential.js";
 import { randomUUID } from "crypto";
-import { createId } from "@paralleldrive/cuid2";
+import { init } from "@paralleldrive/cuid2";
 import { eq } from "drizzle-orm";
 
 const validateStatus = (value, fieldName) => {
@@ -12,6 +12,8 @@ const validateStatus = (value, fieldName) => {
   }
 };
 
+const createId = init({ length: 10 });
+
 export const createUserHandler = async function (request, reply) {
   const { data } = request.body;
 
diff --git a/services/auth/registration.js b/services/auth/registration.js
@@ -1,11 +1,13 @@
 import { createHash, secureCookie } from "../../utils/credential.js";
 import { randomUUID } from "crypto";
-import { createId } from "@paralleldrive/cuid2";
+import { init } from "@paralleldrive/cuid2";
 import { makeAccesstoken, makeRefreshtoken } from "../../utils/jwt.js";
 import config from "../../config.js";
 import { refreshCookie } from "../../utils/cookies.js";
 import { eq } from "drizzle-orm";
 
+const createId = init({ length: 10 });
+
 export const registrationHandler = async function (request, reply) {
   const {
     data: { type, attributes },
diff --git a/services/webAuthn/registrationOptions.js b/services/webAuthn/registrationOptions.js
@@ -1,9 +1,11 @@
 import config from "../../config.js";
-import { createId } from "@paralleldrive/cuid2";
+import { init } from "@paralleldrive/cuid2";
 import { createHash } from "../../utils/credential.js";
 import crypto from "crypto";
 import { generateRegistrationOptions } from "@simplewebauthn/server";
 
+const createId = init({ length: 10 });
+
 export const registrationOptionsHandler = async function (request, reply) {
   try {
     const { name: userName, email: userEmail } = request.body;
