tracker.org
This commit is contained in:
parent
d29b80b1bb
commit
0cabeedc5e
1 changed files with 9 additions and 1 deletions
10
tracker.org
10
tracker.org
|
@ -1900,4 +1900,12 @@ Even recently we experienced subtle bugs. And the solution was to get rid
|
|||
as much as possible of the javascript code that handled the url parsing and building.
|
||||
Now, this is handled via the backend on the login page.
|
||||
|
||||
So the 1st reason to build the HTML
|
||||
So the 1st reason to host the login page was convenience and bug fixing and
|
||||
not necessarily security.
|
||||
|
||||
Regarding security, I was very afraid to introduce a security bug.
|
||||
Because, the login page is clearly a nice entry point for security attack.
|
||||
So I tried to be as conservative as possible.
|
||||
So no js when possible.
|
||||
And if we need to use js, do not use any lib, just basic javascript so the
|
||||
code is easy to understand and debug.
|
||||
|
|
Loading…
Reference in a new issue