Hash emails

## Bug Report

**Current Behavior**
Currently, the userId is the email address of the user. This opens up possible PII leaks. The issue is to hash the email address and password before storing it in the DB.

**Input Code**
In the [putMethod](https://github.com/leetcode-timers/leetcode-timer/blob/8969f015d8d1b63fcc1ddd9aa2f7e063e2350869/leetcode-timer/src/lambda/http/user/createUser.ts#L53), the email address stored in the DB is the same one that's sent from the request.
It's expected that the email is hashed before storing it in the DB.

**Expected behavior/code**
Before the email enters the putMethod, it's expected that the email is hashed to avoid PII. 
Choose a suitable hashing algorithm ( preferably with a suitable salt ). Do not forget to randomize the salt.

**Additional context/Screenshots**
- Do not forget to unhash the email to compare with the email in token
- Attempted to use `bcrypt` to hash
- Didn't work as I got the error given [here](https://stackoverflow.com/questions/56720614/bcrypt-does-not-work-on-lambda-serverless)
- Helpful links
    * https://github.com/kelektiv/node.bcrypt.js/issues/505
    * https://forum.serverless.com/t/after-making-a-deploy-i-test-the-function-and-show-this/8624/2
- Make a function since we'd be hashing the password as well.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Hash emails #7

Bug Report

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Hash emails #7

Description

Bug Report

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions