A lot of the advice on password hashing says that client-side password hashing is not necessary, provided you are using HTTPS or another secure protocol, for instance in Is it worth hashing passwords on the client side? https security – should password be hashed server-side or client-side? Why ...
More...