Skip to content

Latest commit

 

History

History
44 lines (33 loc) · 2.11 KB

README.md

File metadata and controls

44 lines (33 loc) · 2.11 KB

kjhjason.com

This is the source code for my personal website, kjhjason.com.

Note: The website design is inspired by leerob/leerob.io.

Tech Stack

Backend

Frontend

Deployment

Security

  • Automated attacks are mitigated using Cloudflare's turnstile CAPTCHA solution.
  • Passwords are hashed using Argon2.
  • TOTP secrets for 2FA are encrypted using XChaCha20-Poly1305 before being stored in the database.
  • Nonces are generated with rand::thread_rng() that is cryptographically secure and are usually 32 bytes long.
  • Implemented various middleware for enhanced security to adhere to OWASP Top 10 guidelines:
    • Content Security Policy.
    • Cross-Site Request Forgery.
    • HTTP Strict Transport Security.
    • Authentication using HMAC-SHA512 via hmac-serialiser for a shorter but secure tokens instead of using JSON Web Tokens (JWT).