The API is composed of 3 main methods: CredRead, CredWrite, CredDelete. You can add/edit/delete credentials using the GUI or using the API. A generic credential is composed of an application name, a username, and a password. The credential manager allows you to store generic credentials. Last but not least, the user can manage their credential using the UI of the Credential Manager. Multiple applications can access the persisted credentials, so you can implement a kind of Single Sign-on if you have multiple applications that access the same service. The complexity of encryption/decryption is abstracted. It allows to save secrets by encrypting them using the current user account, so only the current user can decrypt them. It's not a well-known feature but it's very handy and easy to use. But how to do that safely? Let's see some API of Windows to do that! #Windows Desktop application If you remind my previous post about cryptography, you know you have to encrypt it. So, you need to save the password and be able to read it later. For instance, you don't want to always enter your credentials every time you use OneNote. In this post, the idea is to store a password on the local machine to avoid entering it every time. In the previous post, I wrote about storing a password to be able to authenticate a user. How to avoid storing secrets in the source code?.Automatically log in a user on a website using the Credential Management API?.How to prompt for a password on Windows?.How to store a password on Windows? (this post).How to implement Password reset feature in a web application?.How to store a password in a web application?.Be sure to check out the rest of the blog posts of the series! This post is part of the series 'Password management'.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |