joystick icon indicating copy to clipboard operation
joystick copied to clipboard
verified publisher icon cheatcode

Password protection middleware

Open rglover opened this issue 3 years ago • 1 comments

I know this is possible just need to think about the design. For apps in development w/ a staging environment, could be handy to have a mock .htaccess type of setup where you can activate a middleware to password-protect requests.

Could even create a cookie that lasts for some amount of time to avoid having to enter password for every route.

rglover avatar Aug 08 '22 14:08 rglover

Cookie is the way to go, along with a password in settings.config.middleware.password_protection. Have a middleware you can import from @joystick.js/node called password_protection(). That will check for a special cookie like joystick_password_protection_token and expect it to equal some hashed version of the password in the conig.

Again, this doesn't need to be hyper-secure, just functional enough to block someone sniffing around a test environment.

rglover avatar Jul 23 '24 21:07 rglover