Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Security and Production readiness #13

Closed
hoangvvo opened this issue Oct 18, 2019 · 2 comments
Closed

Security and Production readiness #13

hoangvvo opened this issue Oct 18, 2019 · 2 comments
Labels
good first issue Good for newcomers help wanted Extra attention is needed

Comments

@hoangvvo
Copy link
Owner

hoangvvo commented Oct 18, 2019

Production readiness

Obviously, this is not production-ready. I do not suggest any to use this project in production as-it. The goal is we can go through the process and implement your own system.

In case you are not aware. This project is kept as simple as possible, thus missing a lot of security and usability consideration. I'm not or suggesting you to neglect them. It's simply because the scope of this project does not encompass them (for now) to avoid difficulty in understanding.

For example, Since we're handling authentication and user data, this aspect must be considered.

Sum up

There are many things missing, since I try to avoid being opinionated and prefer you to implement them yourself. Let's those be challenges to everyone.

Find issues with labels "Production readiness" labels and try it out.

@hoangvvo hoangvvo added enhancement good first issue Good for newcomers help wanted Extra attention is needed labels Oct 19, 2019
@Kerumen
Copy link

Kerumen commented Nov 20, 2020

@hoangvvo As you closed this one, do you consider this template as "production-ready" in terms of security now?

@hoangvvo
Copy link
Owner Author

@hoangvvo As you closed this one, do you consider this template as "production-ready" in terms of security now?

The password is hashed properly and I probably checked some items from the security checklist, but by nature of any application, there can always be security issues.

There are some things you can do:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
good first issue Good for newcomers help wanted Extra attention is needed
Projects
None yet
Development

No branches or pull requests

2 participants