Answer the question
In order to leave comments, you need to log in
J
J
jazzus2019-01-09 17:26:36
jazzus, 2019-01-09 17:26:36
Do I need to encrypt the password before sending it to the server?
On the server (laravel) the password is encrypted via Hash::make
Do I need to additionally encrypt in VUE for security and how? I ask because in my opinion, I saw somewhere that the password is encrypted in vue, then apparently decrypted on the server and encrypted again .. In general, I’m doing all this for the first time and so far I don’t even understand how to ask correctly)
2 answer(s)
@jazzus
@Slavchuk
If it is salted before shipping, it will be better.
S
stratosmi, 2019-01-09 @jazzus
It is necessary that the connection with the server be via https, not http
. And Hash::make is not encryption, but hashing.
In theory, yes, it is quite possible to get by with a password hash.
S
Slavchuk, 2021-10-29 @Slavchuk
Someone can set up the collection of logs on the server and then the password will be there in an unencrypted form.
tail -f /var/log/nginx/access.log | grep '123'
"POST ... HTTP/1.1" 200{\"login\":\"123\",\"password\":\"123\"}If it is salted before shipping, it will be better.
Similar questions
J
A
H
O
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question