[Security] Using only reputed mail services for signup's.

codervivek5 / VigyBag

VigyBag is an e-commerce platform designed to empower villagers by providing them with a nationwide marketplace to sell their eco-friendly products across India. This platform bridges the gap between rural artisans and urban consumers, ensuring that their sustainable creations reach a wider audience.

https://www.vigybag.com/

MIT License

150 stars 353 forks source link

[Security] Using only reputed mail services for signup's. #2309

Open smog-root opened 1 day ago

smog-root commented 1 day ago

Update the existing signup flow to validate email domains. Restrict signups to users with email addresses from trusted providers (e.g., Gmail, Outlook). etc.

Extract the domain from the user's email during signup. Compare it against a predefined list of trusted providers. If the domain matches, proceed with the signup; otherwise, return an error.

i'm expecting a gssoc-ext with level3 (or) level2 and a hacktoberfest-accepted label!

@codervivek5

github-actions[bot] commented 1 day ago

Thank you for creating this issue! We'll look into it as soon as possible. Your contributions are highly appreciated! 😊

For more information, join the official Discord.