Ability to store hashed consumer_key

Report Inappropriate Content · 08-24-2017 06:16 PM

Hi,

This is to check if storing hashed consumer_key is in the road map.

We are planning to use client_credentials flow and as per security requirements not allowed to store credentials as free text.

This does mean that the credentials will not be visible in the UI, which is a good thing and similar model to AWS.

Thanks,

Jaskaran

DChiesa

Yes, storing the consumer key and secret in hashed form is in the roadmap.

@Srinandan Sridhar or @Joel D'sa may be able to provide further details.

Report Inappropriate Content

Thanks @Dino

@Srinandan Sridhar / @Joel D'sa - Is there any timeline for this?

Former Community Member

@jaskarangump

we have plans to encrypt consumer key and secret. we also plan to protect consumer key and secret as GCP does today with service accounts. I cannot give you a timeline yet, but I will definitely involve you guys one we announce the early access program.

Report Inappropriate Content

Thanks @Srinandan Sridhar. Are these credentials not stored in an encrypted format currently in the underlying storage?

Former Community Member

Not at the moment.