Password API semantics - Githubissues

thefueley / scholar-power-api

UMGC CMSC 495 API for Scholar Power Workout App

GNU General Public License v3.0

0 stars 0 forks source link

Password API semantics #12

Closed MoistCode closed 1 year ago

MoistCode commented 1 year ago

API endpoints that accept a password_hash from the client should be renamed to receive password since clients send the non-hashed password.

thefueley commented 1 year ago

This is fixed on ("/api/v1/user", h.CreateUser).Methods("POST") Need to fix on ("/api/v1/user/{id:[0-9]+}", JWTAuth(h.UpdateUserPassword)).Methods("PUT")