Updates TODOs, handles max health changes.

author: nsensfel <SpamShield0@noot-noot.org> 2018-08-29 16:46:13 +0200
committer: nsensfel <SpamShield0@noot-noot.org> 2018-08-29 16:46:13 +0200
commit: e1c7e78b4b4db2f818226faf58efff82fbdfeeaa (patch)
tree: 40bcb27bcb157ac0301681ef365892a78efe904a /src/shared/struct/shr_player.erl
parent: 9ffa08c3aad8e4f40b7f7d1e7845e5153f9c34ab (diff)
1 files changed, 4 insertions, 3 deletions
diff --git a/src/shared/struct/shr_player.erl b/src/shared/struct/shr_player.erl
index 13fa1ed..0843e87 100644
--- a/src/shared/struct/shr_player.erl
+++ b/src/shared/struct/shr_player.erl
@@ -89,9 +89,10 @@
 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 -spec secure_value (binary(), binary()) -> binary().
 secure_value (Salt, Val) ->
-   % TODO: Maybe it would be a good idea to include the user's IP in there as
-   % well. This would ensure that sessions alway use the same server (and thus,
-   % the same caches), and make timed cache exploits easier to prevent.
+   % TODO [SECURITY][LOW]: Maybe it would be a good idea to include the user's
+   % IP in there as well. This would ensure that sessions alway use the same
+   % server (and thus, the same caches), and make timed cache exploits easier to
+   % prevent.
    SaltedVal = erlang:iolist_to_binary([Salt, Val]),
    HashedSaltedVal = crypto:hash(sha384, SaltedVal),
author	nsensfel <SpamShield0@noot-noot.org>	2018-08-29 16:46:13 +0200
committer	nsensfel <SpamShield0@noot-noot.org>	2018-08-29 16:46:13 +0200
commit	e1c7e78b4b4db2f818226faf58efff82fbdfeeaa (patch)
tree	40bcb27bcb157ac0301681ef365892a78efe904a /src/shared/struct/shr_player.erl
parent	9ffa08c3aad8e4f40b7f7d1e7845e5153f9c34ab (diff)