Closed tminaidis9 closed 3 weeks ago
Found also these. I think it might help you
Backend: Ensure HTTPS is Configured: On the backend, you need to have SSL/TLS certificates configured for your server. If you're using services like AWS, Heroku, or any other cloud platform, they usually provide built-in SSL certificates. For self-hosted solutions, you can use services like Let's Encrypt to get free SSL certificates.
Hash Passwords Before Storing: Even though data is transmitted securely, you should hash passwords before storing them in the database. Libraries like bcrypt can help securely hash the password on the backend.
Force HTTPS Redirects: Ensure your backend server is forcing HTTPS connections. For example, in Express (Node.js), you can add middleware to redirect HTTP traffic to HTTPS. @drammos
Use HTTPS for API calls: Make sure that your backend API endpoint uses HTTPS. This ensures that any request from the frontend to the backend is encrypted. You don't need to handle encryption manually in your frontend code since HTTPS takes care of this.
this is required for this encrypted protocol. @drammos can you see that?