No Client-side Encryption of Passwords

Chong Hwi asked September 10, 2020 6:49am in Rails

Chong Hwi September 10, 2020 6:49am

There are no client-side encryption of passwords when they are sent to the web server. In mitigation, the passwords are already protected by SSL/TLS during transit. An example of the POST request is as follows:
user[email]=user@gorails.com&user[password]=****************

*Password has been masked for confidentiality purposes.

Chong Hwi September 24, 2020 5:04am

anyone can help?

Join the discussion

Create an account Log in

Courses

Rails for Beginners

Advanced Ruby: Behind the Magic

Payments with Rails Master Class

Refactoring Rails

Apps

Hatchbox.io

Jumpstart Rails SaaS Template

Other

Remote Ruby Podcast

GoRails Open Source

Rails Hackathon

Beginner Bounties

Ruby on Rails Job Board

Notifications

No Client-side Encryption of Passwords

Want to stay up-to-date with Ruby on Rails?