search

petio-team / petio

Petio Request, Discover, Review
https://petio.tv
MIT License
251 stars 28 forks source link

Don't Store Passwords in Plaintext #258

Closed brettpetch closed 3 years ago

brettpetch commented 3 years ago

Is your feature request related to a problem? Please describe. Passwords to the admin account are currently stored in plaintext at /opt/Petio/bin/config/config.json. If this could be fixed, it'd be great.

Describe the solution you'd like Passwords salted and hashed.

Describe alternatives you've considered encrypting the config with ansible

Additional context NA

Motophan commented 3 years ago

+1

AshDyson commented 3 years ago

Yeah this is planned. Currently only exposed for debugging purposes in first release. Will be patched