blob: 1e85c6f78961e40b54e80f45c3bdc6814934ca9f (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
|
pages:
- 404
- maintenance
- /logout
- privacy info
unimplemented:
- view friend/blocked/request list
- game stuff:
- rulesets
- timer / time limit
website fixes:
- unaccessible when not logged in:
- /user/* pages
- /settings
- unaccessible when logged in:
- /register
- /login
backend fixes:
- don't include unrated games in rating.py
security measures:
- repeated login prevention
- api rate limiting
- write unit tests
- bind tokens to ip adress (csrf)
|