Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Investigate non-plaintext token cache #19

Open
hongooi73 opened this issue Oct 27, 2019 · 2 comments
Open

Investigate non-plaintext token cache #19

hongooi73 opened this issue Oct 27, 2019 · 2 comments

Comments

@hongooi73
Copy link
Collaborator

Email from Storage team

according to the Storage Team’s security experts, it’s best to store the tokens in a secret store rather than exposing them as plaintext. We also had the same conversation with them when we were implementing OAuth authentication, and they advised us to not follow the CLI’s example, as it’s always possible that a malicious agent is running when the user is logged in.
@qingchenl
Copy link

I came across your thread on Ars and did some preliminary work on allowing R to make use of DPAPI: https://github.com/qingchenl/DPAPIinterface.
Hope this helps!

@hongooi73
Copy link
Collaborator Author

Hey thanks, this is awesome. I'm going to be talking to the team later this week, so I'll be able to pin down exactly what's needed.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@hongooi73 @qingchenl