Add token-auth for managing access for the clients to the server

KhushalJangid / sync.io

A simple and easy to use HTTP based file sharing server to aid platform independent wireless file sharing between multiple devices

MIT License

88 stars 14 forks source link

Add token-auth for managing access for the clients to the server #5

Open KhushalJangid opened 4 weeks ago

KhushalJangid commented 4 weeks ago

Currently, clients are asked for password at first connection, subsequent requests are completed without authentication based on client ip, making it more prone to MITM (Man In The Middle) attack. We need to add a Token based auth to track down the users and remove access if needed.

KhushalJangid commented 5 days ago

This seems almost impossible with Vanilla JS. We must reconsider of including a SPA in our go binary . This issue is open for contributions