From 1d0ca5c09c89b6ad7586654b7aefa11707935efe Mon Sep 17 00:00:00 2001
From: "D. Ror" <imnasnainaec@gmail.com>
Date: Mon, 25 Mar 2024 11:30:54 -0400
Subject: [PATCH] Update error message for longer key requirement (#3013)

---
 Backend/Startup.cs | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/Backend/Startup.cs b/Backend/Startup.cs
index aa4657437a..3c9e932c30 100644
--- a/Backend/Startup.cs
+++ b/Backend/Startup.cs
@@ -105,8 +105,8 @@ public void ConfigureServices(IServiceCollection services)
             const string secretKeyEnvName = "COMBINE_JWT_SECRET_KEY";
             var secretKey = Environment.GetEnvironmentVariable(secretKeyEnvName);
 
-            // The JWT key size must be at least 128 bits long.
-            const int minKeyLength = 128 / 8;
+            // The JWT key size must be at least 256 bits long.
+            const int minKeyLength = 256 / 8;
             if (secretKey is null || secretKey.Length < minKeyLength)
             {
                 _logger.LogError("Must set {EnvName} environment variable to string of length {MinLength} or longer.",