No Client-side Encryption of Passwords

Chong Hwi September 10, 2020 6:49am

There are no client-side encryption of passwords when they are sent to the web server. In mitigation, the passwords are already protected by SSL/TLS during transit. An example of the POST request is as follows:
user[email]=user@gorails.com&user[password]=****************

*Password has been masked for confidentiality purposes.

Chong Hwi September 24, 2020 5:04am

anyone can help?

Join the discussion

Create an account Log in

Rails for Beginners

Advanced Ruby: Behind the Magic

Payments with Rails Master Class

Refactoring Rails

Learn Hotwire

Install and Deploy Rails Guides

Hatchbox.io

Jumpstart Rails SaaS Template

Remote Ruby Podcast

GoRails Open Source

Rails Hackathon

Beginner Bounties

Ruby on Rails Job Board

Notifications

No Client-side Encryption of Passwords