Start issuing unique token to every unique user

Question

Start issuing unique token to every unique user

Closed this issue a year ago · 0 comments

With the current communication style, anyone can pretend to be someone else if they have the user ID. Generate a unique token that should be passed with every request to identify if it's the correct user.

Prerequisite: #31 should be implemented first.