fix: Use correct sha1 hashing algo for wsse auth

Algo was based on this comment: usebruno#2136 (comment) and this reference: https://docs.oasis-open.org/wss/v1.1/wss-v1.1-spec-errata-os-SOAPMessageSecurity.htm
Its-treason · Oct 2, 2024 · 634c07d · 634c07d · dwolter-emarsys · Oct 3, 2024
1 parent 4b97ca4
commit 634c07d
Show file tree

Hide file tree

Showing 2 changed files with 6 additions and 1 deletion.
diff --git a/packages/bruno-core/src/request/README.md b/packages/bruno-core/src/request/README.md
@@ -13,6 +13,11 @@ environment variables, the collection and the request itself. The Context is
 passed to everything function and updated throughout the request execution by
 reference.
 
+Bigger files with more functions are best read from bottom to top. The "entrypoint" or
+exported function mostly on the bottom of the files and function at the top are
+called later from the entrypoint or from other function within. All files
+(except `createHttpRequest.ts`) only export one function.
+
 The code is structured in different folder based on when its used in the request
 process.
 

diff --git a/packages/bruno-core/src/request/preRequest/createHttpRequest.ts b/packages/bruno-core/src/request/preRequest/createHttpRequest.ts
@@ -18,7 +18,7 @@ function generateWSSEHeader(username: string, password: string): string {
   const created = new Date().toISOString();
 
   // Generate the password digest
-  const passwordDigest = createHash('sha256')
+  const passwordDigest = createHash('sha1')
     .update(nonce + created + password)
     .digest('base64');