You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Currently, the session id returned in the cookie by the /api/login endpoint is hard-coded to "123".
Instead, the session id should always be uniquely generated and stored in DB.
Acceptance Criteria
We should:
generate a unique session ID for every login and store it in a DB,
lookup the user by its session ID in the /api/authenticate and /api/logout endpoints
delete the session ID on logout
The text was updated successfully, but these errors were encountered:
Context
Currently, the session id returned in the cookie by the
/api/login
endpoint is hard-coded to "123".Instead, the session id should always be uniquely generated and stored in DB.
Acceptance Criteria
We should:
/api/authenticate
and/api/logout
endpointsThe text was updated successfully, but these errors were encountered: