Personally, I have enough knowledge about security, because I was interested in it, so I wouldnāt buy the info product, but for new developers it might be useful.
There are two small mistakes in the <https ⢠You say āDo not restrict password lengthā in one tip, and then in another you suggest to restrict the minimal length to 8-12 characters. ⢠āRepitionā ā āRepetitionā

writen by Aidas Bendoraitis
By the way, it might be that https://auth0.com/ solves most of those security problems with authentication.

writen by Aidas Bendoraitis
Yeah, auth0 solve quite a lot of the issues. Thx for the typo will fix that. Regarding the password length restriction: seems not to be obvious but what I meant was: do not restrict the max length. Having a min length unfortunately is necessary which is meant by the 8-12 chars min length. I will change the restriction part to add a ‘max’ there.

writen by Benedikt