Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Prevent email from leaking #49

Open
lalalune opened this issue Mar 2, 2024 · 0 comments
Open

Prevent email from leaking #49

lalalune opened this issue Mar 2, 2024 · 0 comments
Assignees
@utf94 @Nibirian9
Milestone
MVP

Comments

@lalalune
Copy link
Contributor

lalalune commented Mar 2, 2024
edited
Loading

Right now we are keeping email address in the user table, and the user table is readable by all... we need to make sure that the email is private.

I suggest having an accounts_private table which is created and cascading with accounts table which holds all personal information we wouldnt want to be shared. This can then have RLS to be read/write only by the client.

NOTE: This will break a lot of things. So we need to make sure that we test everything. Some of the postgres functions might reference the accounts table values that would be moved to private. I highly recommend using ChatGPT and asking it to modify these for you unless you really know the SQL :)
@lalalune lalalune added this to the Milestone 1 milestone Mar 2, 2024
@lalalune lalalune modified the milestones: Milestone 1, Milestone 2 Mar 4, 2024
@lalalune lalalune modified the milestones: Milestone 2, MVP Mar 15, 2024
@utf94 utf94 assigned utf94 and unassigned utf94 Mar 18, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@utf94 utf94

@Nibirian9 Nibirian9

Labels
None yet
Projects
None yet
Milestone
MVP
Development

No branches or pull requests
3 participants
@utf94 @lalalune @Nibirian9