Closed twitchyliquid64 closed 1 year ago
See: https://github.com/JiangKlijna/web-shell/blob/ebd1b450cb25b282cb3dd5939afeb88b2974179f/lib/generate.go
This is extremely scary from a security perspective, and rather unnecessary (could be done securely + easily with PASETO tokens like https://github.com/aidantwoods/go-paseto).
Would you accept a PR to switch the login logic to use PASETO?
Of course, I'm glad to accept.
See: https://github.com/JiangKlijna/web-shell/blob/ebd1b450cb25b282cb3dd5939afeb88b2974179f/lib/generate.go
This is extremely scary from a security perspective, and rather unnecessary (could be done securely + easily with PASETO tokens like https://github.com/aidantwoods/go-paseto).
Would you accept a PR to switch the login logic to use PASETO?