We have moved to a new Sailfish OS Forum. Please start new discussions there.

[feature-request] Give us a keyring

asked 2014-05-02 11:01:06 +0300

hardcodes.de gravatar image

updated 2014-05-02 11:01:54 +0300

Currently there is a bug with wrong file permissions in the credentials database: https://together.jolla.com/question/39495/security-risk-with-sqlite-db-in-jolla-passwords-in-plain-text-in-user-space/

Fixing the file permissions would solve the problem for privileged apps only (=from Jolla itself), a good start :-)

Encrypting the file content and giving every app programmer the key would be security by obscurity. On top of that every app that uses credentials has to solve the problem again and again and from app perspective it can not really be solved.

So please, give us a keyring (or keystore, cryptostore, wallet, what ever you name it) and a nice API for every app to use.

edit retag flag offensive close delete

1 Answer

Sort by » oldest newest most voted

answered 2014-05-05 16:48:17 +0300

rainisto gravatar image

Thanks for the feature request. Plaintext db bug is beeing worked on. On API side there is no ETA yet.

edit flag offensive delete publish link more


what about tagging it as "roadmap"?

schmittlauch ( 2014-06-01 22:23:18 +0300 )edit
Login/Signup to Answer

Question tools



Asked: 2014-05-02 11:01:06 +0300

Seen: 307 times

Last updated: May 05 '14