Here’s my use case:
I want users to be able to create an account on my website and then be able to log in from an Android app.
I’ve built the site in Bubble and started hooking up the API. I was following the Dropsource example.
Here’s my concern.
In the Dropsource article, they suggest that I “add two text parameters, one for the email address and one for the password.”. These are passed by the POST to the Bubble app.
Does this mean that passwords are being sent in plain text during login? If so, that’s a security concern. Is there a way to make sure the password is not easily readable?
All suggestions welcome.