search

tsani / hacksignal

Hackathon mentor dispatching platform as a service.
7 stars 1 forks source link

Hash passwords for storage #21

Open bmazoure opened 8 years ago

bmazoure commented 8 years ago

In Setup 3., you better store the hash instead of the raw password ( for security purposes ofc).

tsani commented 8 years ago

On 08/07/2015 02:46 PM, Bogdan Mazoure wrote:

In Setup 3., you better store the hash instead of the raw password ( for security purposes ofc).

— Reply to this email directly or view it on GitHub https://github.com/djeik/hacksignal/issues/21.

Of course. But the more pressing issue is that the setup requires SSL and that we should be using OAuth rather than Basic auth.

bmazoure commented 8 years ago

pliz patch then. My l33t hackathon has to be very secure against hax.