I'm creating a Laravel admin application that can connect on to a number of different databases on different servers. I don't want to store the passwords in clear text on the server on the off chance the server is compromised at some point which would give access to every applications' data and not just the local one.
When a user clicks on one of the databases to access, I want them to enter the password for that database and then allow them access for the duration of their session.
I could store the password in a session variable but I'm not sure if this is secure. Can anyone tell me the safest way to do this?
via Chebli Mohamed
Aucun commentaire:
Enregistrer un commentaire