[SECURITY] Improve Robustness of Auth Checking

[Lissy93]

Category:

One of: Security

Overview

• Use both username + password for generating token, so that a change in either will log the user out
• Prevent privilege escalation by disallowing a user from modifying their user type through the UI
• Improve the isAuthenticated check, by taking account of empty users array

Issue Number N/A

New Vars N/A

Screenshot N/A

Code Quality Checklist (Please complete)

• All changes are backwards compatible
• All lint checks and tests are passing
• There are no (new) build warnings or errors
• (If a new config option is added) Attribute is outlined in the schema and documented
• (If a new dependency is added) Package is essential, and has been checked out for security or performance
• Bumps version, if new feature added

[netlify]

✔️ Deploy Preview for dashy-dev ready!

🔨 Explore the source changes: 87f6438

🔍 Inspect the deploy log: https://app.netlify.com/sites/dashy-dev/deploys/6106b0abba4ca9000772d2cd

😎 Browse the preview: https://deploy-preview-113--dashy-dev.netlify.app/