Is there a way to get the passsword


#1

Im using accounts-password. Is there a way I can retrieve the password?


#2

No. All passwords are hashed with bcrypt before being stored in the database. This is to ensure that even if you database is leaked or stolen your users passwords remain safe. This is considered industry best practise.

Why do you need access to user passwords?


#3

I need to pass it for the api security Im creating. Any idea how I can make an api secure without asking for authetication? Thanks again for the fast reply.


#4

Can’t you just run a check against the userId?


#5

yes I can get the userId just that we are thinking that the asking of username and password more secure before executing the api.