-
## Suggestion/Concern
Storing passwords in plain text, as done in the AuthMiddleware with the users object, is highly insecure and not recommended for real-world applications. In a production envir…
-
### What is the type of issue?
Something else
### What is the issue?
[OWASP](https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html) recommends that for Argon2id:
> Use…
-
# Step 1/4 - The mutation setup
### Estimated time: 1 hour
On this track, you're going to develop a mutation to create users on database. Let's start with baby steps, by creating the mutation prototy…
-
Hi,
We are getting this error message when running the rule:
"|password_hash requires the passlib python module to generate password hashes on Mac OS X/Darwin""
Looks like this could fix it (…
-
The option PASSWORD_HASH=auto stores the password in clear text if no password is set before, because there is no Hash mechanism used if no password exists.
I think it would be a better way to use a …
-
Blocks execution now, should be calculated in another thread.
-
I want emqx to authenticate my Django user. Django uses PBKDF2 with sha356 + 150000 iterations + salt. Django has a `make_password` method to hash plain password in a secure way.
```python
>>> f…
daadu updated
4 years ago
-
## The Problem
After installing this package using `pnpm add @node-rs/argon2` my dev server crashes immediately with the following error:
```bash
Module parse failed: Unexpected character '�' (…
-
Of course many have had the challenge but I've looked at most solutions and I still can't find the reason why my case has refused.
![Screenshot from 2021-12-13 20-12-22](https://user-images.githubu…
-
Need to ensure passwords are hashed out at the moment