I'm a beginner and I was wondering if my hobby project, which includes a login feature, needs to have strict security measures. It'll only be used by a few people, so does that change anything? I know this might seem like a silly question, but I genuinely want to understand the essentials.
2 Answers
It really depends on how you implement the login. If you just hash the passwords before storing them in your database, that might be enough for a hobby project. Keep it simple, but still be cautious!
If you're collecting any user info, like emails for login, you definitely need to make your app secure, especially if it goes public. For a project meant for friends, the risk is lower, but still consider safety!
I plan to have usernames and passwords just for checking user stats. Does that change anything?