Secure login

[naderchehab]

Use bcrypt to hash and salt passwords: https://www.abeautifulsite.net/hashing-passwords-with-nodejs-and-bcrypt

[JMStudiosJoe]

I saw something like this and yes we will need to add this. Where are the locations to add it? In lib/db.js in the signup and login but what about db schemas to store the passphrase properly?

[JMStudiosJoe]

added in branch bycrypt-integration.

[JMStudiosJoe]

do we need to secure it from the frontend or in a specific location or just using bycrypt in db.js when signing up and logging in is enough for now? @naderchehab

[naderchehab]

I think bcrypt does the job. 👍 If we find anything else we can open a new issue.