Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement User Authentication #23

Open
izzyyhh opened this issue Mar 24, 2024 · 0 comments · Fixed by #24
Open

Implement User Authentication #23

izzyyhh opened this issue Mar 24, 2024 · 0 comments · Fixed by #24
Assignees
@izzyyhh
Labels
enhancement New feature or request

Comments

@izzyyhh
Copy link
Collaborator

izzyyhh commented Mar 24, 2024
edited
Loading

Implement User Authentication

Description:
We need to implement user authentication on our website to enhance security and provide personalized experiences. The existing users are stored in our database, so seamless integration is necessary. Authentication is handled via Strapi's default plugin called users-permission. In Strapi a secure hashing algorithm is used, the algorithm is named "bcrypt". Bcrypt is used along with an autogenerated salt. The legacy webpage of vim, hashes passwords in MD5 which is known to not be secure anymore. Therefore, we have to migrate to a more secure algorithm. As Strapi already provides such feature, we utilise it. User passwords stored in Strapi are securely hashed.

Objectives:

  • Provide user authentication functionality by using Strapi's features.
  • Seamlessly migrate the hashing algorithm
  • Support both new user registration and existing user login.
  • Ensure smooth integration with the existing user database.

Outcome:

  • Improved security posture by migrating to a more secure hashing algorithm for user authentication.
  • Increased trust and confidence in the security of user credentials.
  • Users can sign in with their credentials
  • Users can sign up
@izzyyhh izzyyhh added the enhancement New feature or request label Mar 24, 2024
@izzyyhh izzyyhh self-assigned this Mar 24, 2024
@izzyyhh izzyyhh linked a pull request Mar 24, 2024 that will close this issue
User Authentication #22
Closed
@izzyyhh izzyyhh removed a link to a pull request Mar 24, 2024
User Authentication #22
Closed
@izzyyhh izzyyhh linked a pull request Mar 24, 2024 that will close this issue
User authentication #24
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@izzyyhh izzyyhh

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

User authentication vim/website_next_generation
1 participant
@izzyyhh