ac87035742
Bcrypt allows a maximum of 72 bytes. This is part of the algorithm and not something we could change in Vikunja. The solution here was to restrict the password during registration to a max length of 72 bytes. In the future, this should be changed to hash passwords with sha512 or similar before hashing them with bcrypt. Because they should also be salted in that case and the added complexity during the migration phase, this was not implemented yet. The change in this commit only improves the error handling to return an input error instead of a server error when the user enters a password > 72 bytes. Resolves https://vikunja.sentry.io/share/issue/e8e0b64612d84504942feee002ac498a/ (cherry picked from commit 44a43b9f8616f11560c9e04f88f3000a6df5338d)
Web frontend for Vikunja
The todo app to organize your life.
This is the web frontend for Vikunja, written in Vue.js.
Take a look at our roadmap (hosted on Vikunja!) for a list of things we're currently working on!
Security Reports
If you find any security-related issues you don't want to disclose publicly, please use the contact information on our website.
Docker
There is a docker image available with support for http/2 and aggressive caching enabled. In order to build it from sources run the command below. (Docker >= v19.03)
export DOCKER_BUILDKIT=1
docker build -t vikunja/frontend .
Refer to multi-platform documentation in order to build for different platforms.
Project setup
pnpm install
Compiles and hot-reloads for development
pnpm run serve
Compiles and minifies for production
pnpm run build
Lints and fixes files
pnpm run lint