We are going to update Studio Auth component in a couple of days to meet our latest security baseline and recommendations from auditors.
What we will update:
- Authenticated session handling
- Login/Signup/Reset Password endpoint will encrypt payload
- Studio API protection
Once update will be release all existing sessions will be terminated and you have to login again to generate session control keys.
Possible issues:
- New auth session control utilizes timestamps/time-tokens and if you have invalid time on your device you will not be able to login.