I don't like the fact that once you create a user you return the password in the reply. In general, this does not open a big hole in security, but it is still good not to do it.
Therefore, my advice is to remove the password field from the answer.
I have another remark, but I will wait to see how you develop the topic.
ya ya i will be removing that in the next blog which will probably come by tomorrow. Securing and managing password with auto login will also be included there.
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
Here begins the interesting part :)
I don't like the fact that once you create a user you return the password in the reply. In general, this does not open a big hole in security, but it is still good not to do it.
Therefore, my advice is to remove the
password
field from the answer.I have another remark, but I will wait to see how you develop the topic.
ya ya i will be removing that in the next blog which will probably come by tomorrow. Securing and managing password with auto login will also be included there.