Auth solution for encrypting, not hashing, passwords
I'm working on an application where a user signs up with identical credentials from another website. We then use that password to scrape that website (with permission) and display data on web and mobile apps.
Are there 3rd party auth providers who allow you to encrypt a user's password instead of hashing it? I've looked around for a bit and I'm not sure if I can access a user's password from Auth0 or Clerk.dev.
8 Replies
that sounds very insecure
does that other service support this?
yes
Do they have an oAuth API?
no
hmm
we are scraping homework from our school's portal
which is using a 20yo php service
ah ok
uhh honestly, I feel like it wouldn't be the worst idea to wrap your auth solution and scrape the pwd data on submit?
well actually now that I re-read that
it sounds like a horrible idea
lmao
i initially though of using oauth and having the user supply their password separately, but it would be easier if they could just use the same password