Session secret hard coded

SteveMcArthur / docpad-plugin-authentication

Handles authentication and login functionality via social login for your docpad application. Protects pages from unauthenticated users. Uses the node module social-login (https://github.com/26medias/social-login) to standardise the configuration interface to the various login strategies and handle routing and redirection.

http://login-stevehome.rhcloud.com

Other

4 stars 1 forks source link

Session secret hard coded #3

Closed SteveMcArthur closed 9 years ago

SteveMcArthur commented 9 years ago

Session secret is hard coded in the plugin. Should have either an automatically generated secret of a secret passed as a config option

SteveMcArthur commented 9 years ago

No longer hard coded. Is now a config option so the user can pass a session secret if required