re: Securing your express/Node.js API with Firebase auth VIEW POST

TOP OF THREAD FULL DISCUSSION
re: Yeah, but if every app did authentication the same way you are suggesting then their hashed password is still all that will be needed in a case of ...

Thanks for taking the time to answer these quandaries.

Last one: even if an attacker has both access to a hash and the hash function, if that hash function is secure, they still can’t reverse that to get the password, correct?

code of conduct - report abuse