Security risk with SnapDevelop’s Datawindow Converter tool

Resolved Security risk with SnapDevelop’s Datawindow Converter tool

New
Issue

Votes

Undo

Miguel Alzate
SnapDevelop
Friday, 25 October 2024 03:09 AM UTC

Hello, Community.

I apologize in advance if I seem naive or ignorant in asking for help on the following topic:

SnapDevelop API projects based on the Datawindow Converter tool use the appsettings.json file, which contains the database's connection strings. These connection strings include, among other confidential information, the respective unencrypted passwords. The problem is that, when deploying the API, this file is copied to the server, thus exposing highly sensitive information such as server and database names, users and, most importantly, passwords for accessing the databases.

How can this inconvenience be resolved?

Who is viewing this page

Responses (0)

There are no replies made for this question yet.
However, you are not allowed to reply to this question.

Please login to post a reply

You will need to be logged in to be able to post a reply. Login using the form on the right or register an account if you are new here. Register Here »

Forgot Password?

Resolved Security risk with SnapDevelop’s Datawindow Converter tool

Find Questions by Tag