Closed Kobzol closed 4 years ago
FE authentication, DB stores pairs of username/password and they are checked using HTTP-basic Auth. It is partially susceptible to timing attacks (the PW is not controlled if username does not exist), but I don't consider that too important now.
FE authentication, DB stores pairs of username/password and they are checked using HTTP-basic Auth. It is partially susceptible to timing attacks (the PW is not controlled if username does not exist), but I don't consider that too important now.