From 5e331924f618d80be77be6622a0a14153f2c9131 Mon Sep 17 00:00:00 2001
From: Marco <marco1@live.de>
Date: Sun, 4 Dec 2016 16:52:18 +0100
Subject: [PATCH] Increase entropy in tokens for remember directives

---
 src/Auth.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Auth.php b/src/Auth.php
index f663df3..ac2be1b 100644
--- a/src/Auth.php
+++ b/src/Auth.php
@@ -369,7 +369,7 @@ class Auth {
 	 */
 	private function createRememberDirective($userId) {
 		$selector = self::createRandomString(24);
-		$token = self::createRandomString(24);
+		$token = self::createRandomString(32);
 		$tokenHashed = password_hash($token, PASSWORD_DEFAULT);
 		$expires = time() + 3600 * 24 * 28;