Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add tokens as alternatives to basicauth #8

Open
Reinachan opened this issue Mar 23, 2023 · 0 comments
Open

Add tokens as alternatives to basicauth #8

Reinachan opened this issue Mar 23, 2023 · 0 comments
Assignees
@Reinachan
Labels
enhancement Improve upon existing functionality (minor changes)
Milestone
Full release

Comments

@Reinachan
Copy link
Owner

Current method for handling authentication is to base32 encode the username and password and add it as a cookie. Each time the user does any action that requires authentication, the server needs to verify the password with bcrypt. This is a slow process, leading to an unresponsive interface.

The server should instead use a randomly generated token that can be stored in the database for faster verification. This token can be generated using the getrandom crate.
@Reinachan Reinachan added the enhancement Improve upon existing functionality (minor changes) label Mar 23, 2023
@Reinachan Reinachan added this to the Full release milestone Mar 23, 2023
@Reinachan Reinachan self-assigned this Mar 23, 2023
@Reinachan Reinachan moved this to Todo in Fileshare Mar 23, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Reinachan Reinachan

Labels
enhancement Improve upon existing functionality (minor changes)
Projects
Fileshare
Status: Todo
Milestone
Full release
Development

No branches or pull requests
1 participant
@Reinachan