Perhaps this is general desktop development questi...
# compose-desktops
samuel
05/11/2022, 10:02 PMPerhaps this is general desktop development question but using Jetpack compose is my first time doing this and I have a question regarding storing sensitive data e.g tokens in a desktop context. I’m playing around with building a Mac app and i wonder how to approach saving sensitive data specifically on Mac that would be entered once but should be persisted for as long as it does not need to change. What is the recommended approach? Does anyone have/know a sample of something like this?
b
Big Chungus
05/11/2022, 11:17 PMHave you looked at multiplatform-settings?
s
samuel
05/12/2022, 6:32 AMI have not 🤔 Is it this?
https://github.com/russhwolf/multiplatform-settings
👍 2
m
Michael Paus
05/12/2022, 10:16 AMDoes multiplatform-settings support storing sensitive data? I did not find anything like that on a first glance.
s
samuel
05/12/2022, 10:18 AMI have not actively tried it but I skimmed through some of the code and looks like there is some usage of keychain which i think would fit the requirement of storing sensitive data 🤔
m
Michael Paus
05/12/2022, 10:22 AMBut that’s Apple only 😟
s
samuel
05/12/2022, 10:23 AMah sorry i was looking for Apple specifically 😅
m
mikehearn
05/16/2022, 9:27 AMNote that the JVM implementation doesn't use keystores probably because it's not necessary. You can store passwords in the system keystore using the JCA APIs.
mikehearn
05/16/2022, 9:27 AMIf you're storing actual keys or certs, it's better to store them directly of course, but a "password" can be any arbitrary stringified data.
mikehearn
05/16/2022, 9:28 AMBe aware: for these APIs to work your app must have identity, which boils down to how it's packaged and signed. That's how the OS knows to only give out the passwords to your app and not others.
2 Views