search

Commonfare-net / macao-social-wallet

Simple Social Wallet made without javascript using the Freecoin toolkit
https://freecoin.dyne.org
GNU Affero General Public License v3.0
112 stars 33 forks source link

buddy-hashers in handlers/sign_in.clj ? #82

Open jaromil opened 6 years ago

jaromil commented 6 years ago

While most functions are moved inside just-auth, the password derivation (KDF) is still done inside this code by hashers/derive and hashers/check. Shouldn't it be moved also inside just-auth and made implicit? In no occasion passwords should be handled without a derivation anyway,