-
Notifications
You must be signed in to change notification settings - Fork 29
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Implement username/password change, password reset #35
Comments
unit tests missing |
Since the password is currently only sha256'd and might, therefore, be read and converted to plaintext by an attacker, we should encrypt the JWT payload |
not relevant for password reset, but for registration, registration may also be switched to entering username and password when claiming the token. |
What is the state of this? |
nearly complete, I will finish as soon as I get access to a computer I can test on (should be the next 2-3 days). |
Do you need help with something? PS.: #76 (comment) |
no, should be done, just hadn't got enough time, thx |
rework tests (use builder, less strings in test)
rework tests (use builder, less strings in test)
rework tests (use builder, less strings in test)
rework tests (use builder, less strings in test)
rework tests (use builder, less strings in test)
Finally :) |
Hooray! :) Many thanks. |
Want to back this issue? Post a bounty on it! We accept bounties via Bountysource.
The text was updated successfully, but these errors were encountered: