Alexis Hernandez
Alexis Hernandez
See https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html#password-hashing-algorithms and https://brandur.org/fragments/password-hashing
It would be ideal if we can come up with a trick to get the landing page being SEO friendly, a possible alternative would be to keep such a page...
The current approach for invoking the backend API is somewhat annoying: 1. We have an ApiClient, while that's a trait, we just have a specific implementation, making it a class...
The goal is that our local environment is as similar to production as possible, we have been previously hit by some issues that can't be reproduced locally, for example: 1....
It would be nice to use fail2ban when a user fails many authentication attempts. What needs to be done: 1. Make sure that we log failed authentication/authorization attempts, ip address...
TOTP seems ideal to have - https://www.twilio.com/docs/glossary/totp
It would be nice to have a way to do social login easily, login with google could be a good start.
It is ideal to display the application versions (frontend, backend), we'll need UI changes + a new endpoint to expose those details.
When submitting a form with invalid data, the ReCAPTCHA token will get burnt, hence, we need to refresh the component, right now, the whole page needs to be refreshed. Also,...
play-json doesn't generate codecs by default for empty case classes (or case object), we have replaced those with a case class having a single argument called `noData`, like `case class...