I started seeing this warning after updating my version of phpMyAdmin.
The configuration file now needs a secret passphrase (blowfish_secret).
I had previously installed phpMyAdmin with Homebrew—brew install phpmyadmin—and could easily access its information with brew info phpmyadmin.
› brew info phpmyadmin | grep config
# The configuration file is /opt/homebrew/etc/phpmyadmin.config.inc.php
Opening that configuration file on your favorite code editor. You'll find this around line 12.
/opt/homebrew/etc/phpmyadmin.config.inc.php
/**
* This is needed for cookie based authentication to encrypt password in
* cookie. Needs to be 32 chars long.
*/
$cfg['blowfish_secret'] = ''; /* YOU MUST FILL IN THIS FOR COOKIE AUTH! */
If you type a 32-character sequence by hand, e.g. AWdxXWoQrRCyqgmxDkpgBgljO4Wves, you may see the following message.
The secret passphrase in configuration (blowfish_secret) is too short.
Instead, you need 32 chars, which can be generated with the following command.
openssl rand -base64 32
# aMpXYTsPmvGm7GVNSwnH7SUU+agXXu1cIA77R4vcuP8=
Then add that as your blowfish_secret password.
/opt/homebrew/etc/phpmyadmin.config.inc.php
/**
* This is needed for cookie based authentication to encrypt password in
* cookie. Needs to be 32 chars long.
*/
$cfg['blowfish_secret'] = 'aMpXYTsPmvGm7GVNSwnH7SUU+agXXu1cIA77R4vcuP8='; /* YOU MUST FILL IN THIS FOR COOKIE AUTH! */
The warning should now be gone.