~runxiyu/sjdb#10: 
Better handling of API logins

Static tokens aren't the safest way to handle them (although they could be updated via ssh). This probably isn't urgent as it's quite common for tokens with this amount of entropy to be used for long.

However, we should probably indeed stop storing those tokens in plain text. Perhaps argon2id will do?

Status
REPORTED
Submitter
~runxiyu
Assigned to
No-one
Submitted
7 months ago
Updated
7 months ago
Labels
enhancement