ECMABytes - A javascript space to hang out!

The Gallery
, , ,
1

Project URL: https://ecmabytes.glitch.me

ECMABytes

A space where JavaScript coders can play and create challenges.

Screenshot_2020-06-23 Screenshot
Screenshot_2020-06-23 Screenshot743×496 25.6 KB

Features

:spider_web: Lightweight and fast rendering based on Vue.js

:spider_web: 1990’s Retro UI

:spider_web: Strong authorization system, username (unique) and password (encoded) and a SECRET (check localStorage)

:spider_web: Fast and efficient data transfer due to remote sqlite database

:spider_web: Not open-source

:spider_web: Mini user tab on top-right corner, keeping record of eXperiencePoints and Likes

:spider_web: Codes as an attempt are privately stored, only code length is public

Instructions for challenges

  1. Start by typing in fx = args => { ... } for ES6, or function fx(args) { ... } for ES5. Note that function name must be fx
  2. Once your function definition is done, you can hit check syntax to verify
  3. After that, you can move on to the sample test cases designed by the author of the challenge
  4. If your function passes every tests, you are free to make a final submit

In case if you reloaded the page, it’s no problem. Your last code will be saved on every “Check syntax” hit :wink:

Instructions for adding tests cases

  1. Test cases exists in (input, output) pair
  2. You must add a minimum of 5 test cases
  3. Format for test values: "string", [a,r,r,a,y], 123
  4. You must add a code yourself in order to cross-verify your sample tests

Note that, test cases aren’t stored locally.

6 Likes
2

Awww, can you at least make the Vue part open-source? Like are you using the Vue CLI or client-side Vue along with Javascript?

3

Also, for the “isDigit” challenge, isn’t this an ideal solution:

fx = args => {
   return isNaN(args);
}

However, the tests failed.

4 
fx=x=>x===x+0

shortest solution but it doesn’t pass the tests somewhy :frowning:

5

Yeah, same here. :cry:

6

Hi there,
May I ask how and where you are storing user information (e.g. usernames and passwords)? I don’t really like signing up for community projects not knowing if they have put information security and privacy first.

7

I can’t @khalby786 as the server part contains encoding algorithm. However, you can use inspector anytime for the client side vue code. :slight_smile:
Also, I’m not using Vue on server-side

1 Like
8

Note that isNaN checks if it is not a number.

Is this “isDigit” challenge?

9

yeah, !isNaN should be here

2 Likes
10

Ok, didn’t realize that until now.

11

Well @EddiesTech, I store the usernames and passwords in sqlite db. The passwords are encoded first and then stored. The encoding isn’t as simple as atob / btoa encoding.

12

Can you let us know the exact method? As we have said many times on this forum, you should be using a hashing and salting methods. I assume you are doing so.

13

I’m not using hashing / salting, as I was not aware of the fact that it is compulsory. Perhaps, I’m not much active on the forum. I think, I must implement it.
However, I’m using many cycles (~50) of encoding and string manipulation.

14

It’s not compulsory, but it’s the best method and really simple to set up (e.g. bcrypt uses hashing and salting) or you could use @ihack2712’s own library which supports a wide variety of methods :slight_smile:

4 Likes
15

See: A secure-, idiot proof hashing module

4 Likes
16

encoding doesn’t really help as it can be decoded. Encoding is even less secure than encryption (which btw shouldn’t be used either). Encoding and decoding happens without a key.

Hashing and salting should be used, as Eddie recommended your can use either bcrypt or my very own idiot proof hashing library:

const { hash, test } = require("ihacks-hash");

const passwordHash = hash("sha512", "my password", undefined, 1000);
const isPasswordValid = test(passwordHash, "my password");

if (isPasswordValid) console.log("Password is valid!");
else console.log("Password isn't valid!");
17

I agree with all the things you and @EddiesTech had said, but I can’t find some quickest way to update passwords in table. Do I have to use update command for taht?

18

Can you elaborate? 

19

Where do you save the passwords currently? A file? You should be using a database (MongoDB Atlas, deta are a few free examples)

20

How come you thought I’m using a file @EddiesTech ? A file can be easily viewed like “example.glitch.com/filename.txt”. :joy:
I’m using sqlite3 npm module. And, now I want to know how to update the passwords (encoded -> hashed), apart from using update sql cmd?