Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Production Security #21

Open
4 tasks
nionata opened this issue May 15, 2020 · 0 comments
Open
4 tasks

Production Security #21

nionata opened this issue May 15, 2020 · 0 comments
Assignees
@nionata @rennemannd
Labels
backend This involves working with the server frontend This issue is related to the client folder
Milestone
1.0

Comments

@nionata
Copy link
Member

nionata commented May 15, 2020
edited by rennemannd
Loading

  • Change the admin path from /admin to something less notable for security
  • Configure cors to only accept same site
  • Add some sort of encryption to the jwt tokens to hide payload contents (possible bcrypt)
  • Switch over to using httpOnly in place of localstorage for jwt's
@nionata nionata added the backend This involves working with the server label May 15, 2020
@nionata nionata added this to the 1.0 milestone May 15, 2020
@nionata nionata self-assigned this May 15, 2020
@nionata nionata changed the title Production Admin Path Production Security May 31, 2020
@rennemannd rennemannd added the frontend This issue is related to the client folder label Jun 29, 2020
@rennemannd rennemannd self-assigned this Jun 29, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@nionata nionata

@rennemannd rennemannd

Labels
backend This involves working with the server frontend This issue is related to the client folder
Projects
None yet
Milestone
1.0
Development

No branches or pull requests
2 participants
@nionata @rennemannd