UI Enhacement in Forgot Password

[thejohnalex]

Hello,

Currently, the forgot password page is as bad as it can be, and there is also no rate limiting on the API calls for login or signup, which could pose a serious threat, such as a DDOS attack, when a user tries to compromise the cloud service.

Possible ways to implement improvements:

• Improvise the forgot password page.
• Implement rate limiting on the API calls from both frontend and backend.
  P.S.: I am John Alex from IARE, 2nd year. Padmaja ma'am said if there are any issues, create a GitHub issue and tag any one of the team and inform her and also to inform mam again if it's not resolved.

Bro, can you do this? @gnaaruag

cc : @Sankeerth-g7

[thejohnalex]

To demonstrate the threat this poses, I can run a Python script that submits the button with all roll numbers of IARE students one by one, let's say, 1000 times. This could be easily scaled to a larger volume if I run it in a cloud virtual machine (VM).

backend fix is preferred

Actually, can I try this?

[gnaaruag]

noted. will fix in a future pr

[noobguy77]

@thejohnalex BuildIT is open source 🙌, feel free to fix the issue and raise a PR.

[thejohnalex]

Well I don't have much idea about node other than python will try to fix any good first issues like styling css

[thejohnalex]

Actually working on styling and css if I can revamp the UI

will share the figma link if its good

[thejohnalex]

Hello @gnaaruag

You can just only work on fixing the multiple api calls in the backend

I am working on improving the forgot password page