In b4a apps you can read every password out of an apk... FTP, File encryption, etc
Could you make it harder to hack a password erel? For example a #Password# Command? That the string between this command will be encrypted in the apk or something like that?
Why are you storing unencrypted passwords in your code?
If you need safety; DO IT YOURSELF. Use encrypted passwords (and so on), compile your app obfuscated
is it possibile to encrypt your password in the b4a code?
If you code with java it is possible to hide your password... i know
But even in obfuscated mode the password is in the main.java file visible... the only changing is that the variable name is changed (thats what obfusacted mode does...)
You have the encryption lib, and you have code obfuscation.
General "good coding rules" say to never hard code passwords... encrypt them and save to a file. When needed, read the file and decrypt! Even assets can be encrypted now!
Can anyone post a "good practice" example? I want to secure my DB password. So far I have it hard-coded in Process_Globals with obfuscation.
I'm sure there's a better way.
Search the forum, there are hundreds of examples... There is a tool to encript the assets folder and a tutorial on how to decrypt when needed. Just use "encrypt assets" in the search box, and guess what...!? Its the first result shown!!!!
Search the forum, there are hundreds of examples... There is a tool to encript the assets folder and a tutorial on how to decrypt when needed. Just use "encrypt assets" in the search box, and guess what...!? Its the first result shown!!!!