Contrib.social

Basic auth password encryption

Open on Drupal.org →
Created on 4 March 2024, about 1 year ago

the BasicAuth ClientAuthorization plugin saves the entity_share password directly as JSON in the database.
If at all possible i think we should let people know the "local storage" provider might not be ideal for production environment.

Key module itself gives a nice example of this in the readme:
https://git.drupalcode.org/project/key/-/blob/8.x-1.x/README.md
`However, for
better security on production websites, keys should not be stored in
configuration. Keys using the Configuration provider are not obscured
when editing, making it even more important that this provider not be
used in a production environment.`

Feature request
Status

Active

Version

3.0

Component

Documentation

Created by

🇳🇱Netherlands willempje2

Live updates comments and jobs are added and updated live.
Sign in to follow issues

Comments & Activities

contrib.social Blog FAQ Discussions
Production build 0.71.5 2024