From 270173fd5c1491d4d98fd69fbd009cc46aea9c36 Mon Sep 17 00:00:00 2001
From: venusbb <venus.bailey@digital.cabinet-office.gov.uk>
Date: Fri, 9 Jun 2017 17:15:51 +0100
Subject: [PATCH] 2FA use secret cryptopgraphy

---
 app/dao/users_dao.py | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/app/dao/users_dao.py b/app/dao/users_dao.py
index fce62a576..501840ba4 100644
--- a/app/dao/users_dao.py
+++ b/app/dao/users_dao.py
@@ -11,14 +11,12 @@ def _remove_values_for_keys_if_present(dict, keys):
 
 
 def create_secret_code():
-    '''
     L1 = []
     for i in range(0, 5):
         L1.append(secrets.randbelow(10))    #return cryptographically strong random number using secrets module
     L2 = ''.join(map(str, L1))
     return L2
-    '''
-    return ''.join(map(str, random.sample(range(9), 5)))
+
 
 
 def save_user_attribute(usr, update_dict={}):