+1 Hardcoding passwords does pose security risks. Generating and returning random codes It looks good to me
Best, Huajie Wang zhouli <[email protected]> 于2023年4月25日周二 10:17写道: > Hi Team: > > > StreamaPark supports admin to reset user password, but the reseted > password is hardcoded which may brings some security issues, for example, a > hacker can use this hardcoded password try to login with for > different users. So, I propose to generate and return a random password in > backend when reset password. > > > > > Best Regards.
