Open
Description
Implement User Authentication
Description:
We need to implement user authentication on our website to enhance security and provide personalized experiences. The existing users are stored in our database, so seamless integration is necessary. Authentication is handled via Strapi's default plugin called users-permission. In Strapi a secure hashing algorithm is used, the algorithm is named "bcrypt". Bcrypt is used along with an autogenerated salt. The legacy webpage of vim, hashes passwords in MD5 which is known to not be secure anymore. Therefore, we have to migrate to a more secure algorithm. As Strapi already provides such feature, we utilise it. User passwords stored in Strapi are securely hashed.
Objectives:
- Provide user authentication functionality by using Strapi's features.
- Seamlessly migrate the hashing algorithm
- Support both new user registration and existing user login.
- Ensure smooth integration with the existing user database.
Outcome:
- Improved security posture by migrating to a more secure hashing algorithm for user authentication.
- Increased trust and confidence in the security of user credentials.
- Users can sign in with their credentials
- Users can sign up