stackoom
  简体   繁体   中英

How to save multiple credentials securely for an API in Python Flask?

 原文  2020-03-31 18:19:31       python/ api/ flask

Question

What is a secure way to save multiple credentials needed by an API developed in Python Flask?

Is it ok to encrypt/hash and save credentials in a database or configuration file? As storing data this way seems to be insecure and also when password changes, we'll have to update the database somehow.

Is there any better way available?

1 answers

solution1
 1 ACCPTED  2020-03-31 20:40:01

For production environments, secrets are usually kept in something designed to keep secrets, such as Hashicorp secrets vault, Azure Key Vault or AWS Secrets Manager. These are securely kept in the environments and are only available there.

Developing locally you could use Keybase as a place to keep your secrets in files and mount the secrets directory.

Just remember that encrypting your credentials is pointless if you hardcode the decryption key in the source code, which brings you back to the same question, where do you keep your decryption key? The answer; secrets manager / vaults.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to securely pass credentials in python? Securely passing credentials for API authentication - Python 3 How to properly and securely handle cookies and sessions in Python's Flask? how to validate credentials in flask/python with mysql? Python Flask “Invalid Credentials” How to securely sign requests with aws credentials? How to securely store database credentials in windows? How to deploy python FLASK API? Python 3 Flask Rest API Get multiple argument Python Flask-restful multiple api endpoints
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM