Looks really kool. Reminds me of tiddlywiki but yet totally different. The authentication is very briefly touched upon. What kind of auth is it? Maybe more robust to just use http auth via caddy?
It’s pretty simple. Supports a single username:password combo, issues a JWT in a cookie and that’s it.
But is there brute-force prevention mechanisms, e.g. delaying logins by a few seconds?
Looks really kool. Reminds me of tiddlywiki but yet totally different. The authentication is very briefly touched upon. What kind of auth is it? Maybe more robust to just use http auth via caddy?
It’s pretty simple. Supports a single username:password combo, issues a JWT in a cookie and that’s it.
But is there brute-force prevention mechanisms, e.g. delaying logins by a few seconds?
No that should be handled by eg Authelia