You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository has been archived by the owner on Apr 12, 2022. It is now read-only.
@jamiltz I'd like to change the native code to no longer return a url with the username and password embedded in it. It just feels a bit funky and forces the javascript to do some unnecessary parsing. Instead of returning a string url, i'd like to change both implementations to return something like this:
... then we can pass these parameters around more explicitly.
Or, (maybe more secure than this) instead of passing the username and password for the local db, we just pass an encoded auth token? Putting the username and password in clear text in the url doesn't feel as good as setting the encoded auth header.
The text was updated successfully, but these errors were encountered:
@jamiltz I'd like to change the native code to no longer return a url with the username and password embedded in it. It just feels a bit funky and forces the javascript to do some unnecessary parsing. Instead of returning a string url, i'd like to change both implementations to return something like this:
... then we can pass these parameters around more explicitly.
Or, (maybe more secure than this) instead of passing the username and password for the local db, we just pass an encoded auth token? Putting the username and password in clear text in the url doesn't feel as good as setting the encoded auth header.
The text was updated successfully, but these errors were encountered: