-
Notifications
You must be signed in to change notification settings - Fork 0
Security Issues
Joe Zelinsky edited this page Nov 4, 2024
·
5 revisions
Our app stores several pieces of sensitive information, including usernames, email addresses, passwords, and user-generated content (events).
- We will be using Mongodb to protect this information, using encryption that only the developers will be able to have access to. Using role-based access control to restrict access to authorized users only.
All databases in our application are accessible solely through the backend, ensuring that users cannot directly interact with the database.
- By restricting access to the backend, which is developed in Flask, we create a controlled environment where only authenticated and authorized requests can reach the database. This setup allows the backend to validate and clean all inputs, reducing the risk of unauthorized data access.