Re-written, Intented to make it as copy-paste for other projects I might use it in, but I don't know if thats the case anymore
Stuff to do:
CaptchaIP timeouts- OAuth2 support
- MFA support
- Still need to make email parsing less horrible
- Use relation or what ever its called for online users
- Maybe refractor and rewrite the authenticate extractor or something idk im not fixing that soon
Peppering: https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html#pepperingLooked into peppering and turns out maybe it wasnt a good idea, however still considerning implementing aes 256 db encryption and storing secret in tpm or something like that