hodlbod on Nostr: The stringified json of the session object was used as the user ID, so yes, stored in ...
The stringified json of the session object was used as the user ID, so yes, stored in plaintext and visible via the admin UI. 😭
Published at
2024-10-25 16:28:10Event JSON
{
"id": "cf7cf101905bb00e3556bfdd79201e50763d0bd4021eae6dde87ceb03061eafd",
"pubkey": "97c70a44366a6535c145b333f973ea86dfdc2d7a99da618c40c64705ad98e322",
"created_at": 1729873690,
"kind": 1,
"tags": [
[
"p",
"e2ccf7cf20403f3f2a4a55b328f0de3be38558a7d5f33632fdaaefc726c1c8eb",
"wss://relay.utxo.one/",
"utxo the webmaster 🧑💻"
],
[
"e",
"3169146c22d4dd75ee8486afd6a163c95e63156729eb76ca93b0b8d2c4608ea7",
"wss://wot.utxo.one/",
"root"
],
[
"e",
"78d1de4c7f7ccd100993430c42140f5835a0157918958dddf5998eb3ce210882",
"wss://relay.utxo.one/",
"reply",
"e2ccf7cf20403f3f2a4a55b328f0de3be38558a7d5f33632fdaaefc726c1c8eb"
],
[
"client",
"Coracle",
"31990:97c70a44366a6535c145b333f973ea86dfdc2d7a99da618c40c64705ad98e322:1685968093690"
]
],
"content": "The stringified json of the session object was used as the user ID, so yes, stored in plaintext and visible via the admin UI. 😭",
"sig": "aa7be73aa889ba85298633ddcf5a224e8aaf50d834269c96465e7577a4329751228c2e82d4fa7952de2a1d4385324f14ead032188aefa7cb10e83d606cc69a2b"
}