SavePasswords
Save Database Connection Passwords
Contents |
Description / Use case
Allow the user to specify that database connection passwords are saved between sessions.
If the users opts for this, save the password in the connection file.
When re-connecting with the same connection, use the stored password.
Filed in October/06 as Enhancement 87600
Justification
This is a usability issue. We have had user feedback (including from interviews) that this is important.
UI Change
Modify the two dialogs that current offer a checkbox for "Remember password during this session" to just say "Remember password". The Help file will explain what this means.
Update: Propose to change wording to "Remember password (may be insecure; see Help for details)" and add Help button.
Semantics Change
Saving
If the box is checked (on either dialog), the password is saved in <userdir>/config/Databases/Connections/<connection>.xml
The plan is to save the password in scrambled form. As alternatives, it could be saved in plaintext, or encrypted form.
Retrieving
If the password has been saved, it will be re-used when an attempt is made to connect to the connection entry.
If the user is connecting from the Services tab, the Connection dialog will be surfaced, with username and password filled in. This allows him to make changes to the connection, e.g. changing the default schema or the password retention.
If the user is connecting from elsewhere (e.g., SQL Editor, Visual SQL EDitor, or Visualweb databinding), just expose a modal progress dialog.
Currently, whenever the user re-connects within the current session after saving the password, the connection is established automatically with no dialog.
Implementation
The main change is to update the XML file (and DTD), and the routines that access it, to set/get the password value.
Approvals
Approval needed for the UI change.
Update: Granted. HIE and Docs have approved.
Need to ensure that password-saving is ARC-compliant.
Update: Granted. PetrS says it's OK.
Attachments
