- Issue created by @willempje2
the BasicAuth ClientAuthorization plugin saves the entity_share password directly as JSON in the database.
If at all possible i think we should let people know the "local storage" provider might not be ideal for production environment.
Key module itself gives a nice example of this in the readme:
https://git.drupalcode.org/project/key/-/blob/8.x-1.x/README.md
`However, for
better security on production websites, keys should not be stored in
configuration. Keys using the Configuration provider are not obscured
when editing, making it even more important that this provider not be
used in a production environment.`
Active
3.0
Documentation