Storing plaintext password in database is a poor practice, because it exposes your users passwords in case of SQL injection or other DB leak.
The solution is to store the hash of password and compare it to hash of user input.
Additionally, to prevent hash brute-force so called 'salt' is used.
For extra credit, implement this security measures in your app.
Storing plaintext password in database is a poor practice, because it exposes your users passwords in case of SQL injection or other DB leak. The solution is to store the hash of password and compare it to hash of user input. Additionally, to prevent hash brute-force so called 'salt' is used. For extra credit, implement this security measures in your app.