Save sensitive data


May 8, 2008
Hi all,

I'm creating an application that will use API call to a web application.

Therefore I need a developer API_KEY and API_PASS.
Those are specific for my application, so are

Then users can login in the application, witch will authenticate on the web application.
This returns a logintoken.

All these settings should be saved somehow in my application:

- API_KEY en API_PASS are application specific
- username, userpass and logintoken are user specific

What is the best way to save that info?
In a binary file?
In some application settings?

Thank you in advance :)


Jul 19, 2011
I'm not sure the best way to save the data, but as far as where you are going to save the data is important in the days of continued phishing scams and database hacks. For instance, I would save the user info is a password protected VPS of sorts.
Top Bottom