You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The current implementation of the AuthLogin class in libs/web/src/services/AuthLogin.ts uses plain text password comparison. For enhanced security, it is recommended to use a secure password comparison method such as bcrypt.
Suggested Changes
Install bcrypt library.
Modify the login method in the AuthLogin class to use bcrypt.compare for password comparison.
The current implementation of the
AuthLogin
class inlibs/web/src/services/AuthLogin.ts
uses plain text password comparison. For enhanced security, it is recommended to use a secure password comparison method such asbcrypt
.Suggested Changes
bcrypt
library.login
method in theAuthLogin
class to usebcrypt.compare
for password comparison.Example:
References
This change will ensure that passwords are compared securely, enhancing the overall security of the authentication process.
Requested by: @drazisil
Related PR: #17 (comment)
The text was updated successfully, but these errors were encountered: