- Navigation Bar
- Index
- Sign up component
- Sign in component
- Manage component
- Reset password component
- Paste submission component
- Paste edit component
- Paste view component
- Paste list component
- Paste expiration
- Migrate off of JWTs and just use regular cookies.
- Use Redis for password reset tokens
- Use Redis for paste expiration (?)
- Fully implement aria controls
- Setup.py
- Pastes could probably have a store
- Unit Tests
- Rate Limiter
- Make the email change require an email verification
- Upgrade WebPack to v4
- Better axios error handling
- Logs
- Refactor the api resources to be less bloated.
- Configuration
- Handle cases for when the paste someone is editing expires/is deleted as they are editing/deleting it.
- As it currently stands, password verification for pastes are way too overbearing. Fix this.
- Password Hashing
- Token based password recovery
- CSRF Tokens
- XSS
- Security Headers (use https://github.com/GoogleCloudPlatform/flask-talisman)
- HSTS
- X-XSS-Protection
- Set-Cookie options