Why do web dev still write their own auth solutions? When you’re trying to figure out how to “decrypt SHA1” you’re doing it wrong.