Michael Arciniega
asked on
Security considerations when submitting login info in an Angular app
Will submitting a login form with a POST request over HTTPS be enough security or are there other precautions I should take? This project is also being built in Angular if there are any specific considerations.
don't ever trust user entered fields ... a parent once named their child 'drop table' which killed a lot of databases
ASKER
The api is rock solid :) I was more concerned with protecting the users info in transit and any sort of browser attack.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks noci! Every request is going through HTTPS. I just didn't know if was going to be that easy.
ow afterburner...., setup your webserver to use DH keyexchange. (mostly done through a dh parameter file in the webserver config).