# prisma-whats-new
- s
sdubois
11/10/2016, 2:54 PMI have a feeling that I need to finish my auth flow differently, making sure to issue the
mutation server-side instead of browser-side as I did now. Then it's the server which will receive the token and can store it in a session in some way.signinUser - s
sam
11/10/2016, 3:02 PMProbably a good start to think about it. - s
sam
11/10/2016, 3:02 PMAlthough, does the signinUser mutation accept unhashed credentials? If so, that might present a security risk... - s
sdubois
11/10/2016, 3:10 PM@sam
accepts an auth token coming from auth0 (in my case) and then exchanges it for a user token. So it's hashed AFAIK (although that's a term new for me -- learning along the way)signinUser - s
sam
11/10/2016, 3:15 PMAh, okay. As long as the user isn't sending their password unencrypted, it should be fine... - s
sdubois
11/10/2016, 3:37 PMOK so now I guess I need to learn about calling cookie-parser by myself (next doesn't yet allow tweaking middleware) and storing server-side in-memory as a first step - s
sdubois
11/10/2016, 3:38 PMjeez why is authentication and session management so complicated, can't we just all hold each other's hands and trust people when they say who they are? 😛✌️ 2 - t
thisismissem
11/10/2016, 10:14 PM - t
thisismissem
11/10/2016, 10:14 PMn.b., it's a private draft atm; I need to re-author it - t
thisismissem
11/10/2016, 10:15 PMI'll likely do something on password management as well, as it's a topic many people using node.js still have issues with - t
thisismissem
11/10/2016, 10:16 PMe.g., it's really good to version your password storage; such that you can easily do rolling migrations to newer stronger algorithms or address security concerns as they arise - s
sdubois
11/11/2016, 9:24 AMthanks @thisismissem I'll read that - s
schickling
11/11/2016, 9:26 AMYou're totally right, @sashko. Just fixed the name 🙂 - g
geocine
11/11/2016, 3:31 PMany demo for apollo + ionic 2 (angular 2) ? - n
nilan
11/11/2016, 3:32 PMwe got an instagram app with apollo + angular 2: https://github.com/graphcool-examples/angular-apollo-instagram-example simple smile - g
geocine
11/11/2016, 3:32 PMthanks - n
nilan
11/11/2016, 3:32 PMor a Todo app with the same stack. check https://medium.com/@gerard.sans/graphql-and-the-amazing-apollo-client-fe57e162a70c if that sounds good 😛 - g
geocine
11/11/2016, 4:45 PMdo you know an extension in vscode that would allow syntax highlighting , linting etc on gql es6 template strings? The author of one of the extensions (from apollostack) for graphql has raised an issue on vscode regarding this https://github.com/Microsoft/vscode/issues/5961 . I don't know if its has been resolved or anyone has found a solution - s
sdubois
11/12/2016, 7:57 AMShould Graphcool create a channel in https://graphql.slack.com/ ? - s
sdubois
11/12/2016, 7:57 AME.g scaphold has one (but not active) - s
sdubois
11/12/2016, 8:00 AMinterestingly there's no Apollo channel either. Would probably just confuse people as they have their own slack (like here) - s
schickling
11/12/2016, 9:50 AMGood point @sdubois! Do you think it would provide some value to people having a channel there? - s
sdubois
11/12/2016, 10:01 AM@schickling: only way to know is to try I guess... Maybe create a channel and leave a description suggesting asking questions either there or in this slack, as people prefer - d
denisnikulin
11/12/2016, 10:56 AMhello - s
schickling
11/12/2016, 10:56 AM@sdubois: Totally 🙂 - s
schickling
11/12/2016, 10:56 AMHey @denisnikulin! - d
denisnikulin
11/12/2016, 10:56 AMhow do I download the schema I created in graph.cool? - d
denisnikulin
11/12/2016, 10:56 AM🙂 - s
schickling
11/12/2016, 10:57 AMYou mean as a
file?.json