Storing passwords is a great responsibility. There are a plenty of rules which need to be
followed and even implementing them won’t make an application
bullet hack proof.
I don’t want to deal with password restoration, new accounts confirmation etc. while
developing Łapka, so I’ve decided to take an easier approach and rely on a third-party
authentication system - the one delivered
It is both safer and easier for an user as well. There are great chances that necessary Google account already exists and in the future it should be trivial to plug yet another service - probably Facebook, as adaptation may be even bigger than Google accounts.
There is also a good information related to Łapka’s web framework - aiohttp. The new, backwards incompatible version, has been released. Among cleaning up API, authors have made another important change - they’ve rewrote some low-level aspects of their framework and now switching to uvloop will result in a huge performance improvement - up to 90%, at least according to release notes. You can expect a post about switching to uvloop in a future.
Thanks to the test suit present in Łapka and a
2.0 migration guide, porting was
a piece of cake and my project is already using the most recent aiohttp version.