From 8a7622147ea5b4496fd7e1353bb418352280e636 Mon Sep 17 00:00:00 2001
From: zyberzebra <zyberzebra@users.noreply.github.com>
Date: Wed, 20 Mar 2024 21:19:38 +0100
Subject: [PATCH] doc: added some todos

---
 src/main/java/com/example/demo1/CookieVaultServlet.java | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/main/java/com/example/demo1/CookieVaultServlet.java b/src/main/java/com/example/demo1/CookieVaultServlet.java
index cdc74d5..841d93e 100644
--- a/src/main/java/com/example/demo1/CookieVaultServlet.java
+++ b/src/main/java/com/example/demo1/CookieVaultServlet.java
@@ -10,6 +10,7 @@
 
 @WebServlet(name = "cookieVaultServlet", value = "/the-cookie-vault")
 public class CookieVaultServlet extends HttpServlet {
+    //todo remove salt and make the secret "easier" to crack and add riddle for additional clam
     public static final LocalDate CHEAP_SALT = LocalDate.now();
     public static final Algorithm ALGORITHM = Algorithm.HMAC256("tomcat"+ CHEAP_SALT);
     private String message;
@@ -24,7 +25,7 @@ public void doGet(HttpServletRequest request, HttpServletResponse response) thro
         // Hello
         String jwt = JWT.create().withClaim("Secret", "Hello Hacker. This is your price.").sign(ALGORITHM);
 
-        PrintWriter out = response.getWriter();
+        PrintWriter out = response.getWriter(); //todo html
         out.println("<html><body>");
         out.println("<h1>" + message + "</h1>");
         out.println("<div>"+ "you fond your JWT! "