Wrong listing in 6. Digital Identity under the checklist

[sydseter]

I noticed that "2. Passwords" under Digital Identity had listed a lot of bullet points that belongs under "1. Authentication".

E.g:

1. Require authentication for all pages and resources, except those specifically intended to be public

Should we perhaps move this under 1. Authentication?

Context :
Section: (eg '/04-design/2-web-app-checklist')

https://devguide.owasp.org/en/04-design/02-web-app-checklist/06-digital-identity/

[jgadsden]

yes, certainly looks wrong at the moment - there are several bullet points that should be in 1. Authentication
I can assign this to you if you like @sydseter ? Or bounce it back to me and I can make the changes
thanks for spotting this

[sydseter]

I can do it.