Comments (4)
@rieck-srlabs Thanks for the suggestion. Will look into it. What will happen to the existing users who are already created? Do we need to ask them to create new password?
from webtag.
Just curious - why not OAuth? To me, creating / managing yet another password is a barrier to entry, but being able to login with my GitHub (just identity, no permissions), for example, would be a really simple thing to do. It would also allow you to offload user/password management to another provider and focus on your core product.
from webtag.
Disregard my last comment. Just saw issue #4.
from webtag.
What will happen to the existing users who are already created? Do we need to ask them to create new password?
You'll have to migrate them. Asking them to reset their own password would work, but you could also:
- Add a
passwordVersion
enum to theuserSchema
withv1
(current password hashing) andv2
(more secure setup) - Add code to
logIn
that handles bothv1
andv2
, but that migrates users fromv1
tov2
on login (you have the plaintext password then). Alternatively, update all other functionality to usev2
, so that any password reset will use the improved setup. - Modify the production database accordingly, setting all current users to
v1
. - Wait for users to login and upgrade their password version.
- Remove migration code once there are no longer any
v1
users.
from webtag.
Related Issues (8)
- Bookmarklet doesn't work with Arc browser HOT 1
- Add passport.js for user authentication
- Add ability to sort the bookmarks from UI HOT 1
- Feature Request: ActivityPub Support HOT 1
- Bookmarklet doesn't work with uBlock Origin enabled HOT 1
- Missing postinstall.js file when building HOT 1
- Modify bookmarklet to pass the Title of the page as well? HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from webtag.