Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Data protection mechanism for storing passwords locally #164

Open
Dansoftowner opened this issue Mar 18, 2022 · 0 comments
Open

Data protection mechanism for storing passwords locally #164

Dansoftowner opened this issue Mar 18, 2022 · 0 comments
Labels
enhancement New feature or request high-priority

Comments

@Dansoftowner
Copy link
Owner

Dansoftowner commented Mar 18, 2022
edited
Loading

Storing the passwords of auto-login databases plainly in the configuration file is dangerous.

On Windows, there is something called as DPAPI (Data Protection API) that can help in this situation.
On other systems there should be alternatives too.

The question is, how to use the DPAPI in java. Several wrappers available like:

Some help in this topic:

Another way of dealing with this would be that the user have to memorize a shorter crypto-key ("master password") in place of the password.
@Dansoftowner Dansoftowner added enhancement New feature or request high-priority labels Mar 18, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request high-priority
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@Dansoftowner