Implement proper authentication
Current situation:
- c-server authenticates to CouchDB (OK ?)
- c-labbook authenticates to CouchDB (CouchDB credentials in clear text on browser)
- client-side authentication on c-labbook (all user credentials in clear text on browser)
Note: CouchDB authorization system is per-database per default; fine-grained access control can be achieved using validation functions.
Possible solution: Okta ? (proprietary) ; Keycloak ?…
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information