When working with login usernames and passwords, I am wondering how the data from the frontend ( a python variable action gotten from a value, i.e. {{ui.login_password.value}}) to the backend python module. Is the frontend value ever sending over network as a plaintext password ? How does the string text inputted to the string get to the backend server component from a different client to the server backend.
Hi @ZaneLesley,
Yeah, it’s like you say. In that case, the string will be sent as plaintext. You can see that in the network panel of the developer console. Which is fair, in my opinion. The app doesn’t know this value comes specifically from a password input.
As for
I’m not sure what exactly you’re asking here. If you could ask more detailed, I’ll gladly answer.
1 Like
Just knowing it’s plaintext is enough, may just have to encode it before being sent in the payload if that security across HTTPS is a big enough concern for my team. For the python backend, I just wanted to ensure everything happening on the backend python, stays on the backend, for example, if I’m hashing a password, I don’t want it sending a payload that says “here is the hashed password”.
Thanks for the reply.
2 Likes