Password Storage

DBCode provides multiple password storage options to suit diverse security and usability needs. From session-only storage to encrypted synchronization, these options ensure flexibility without compromising security.

When configuring a database connection or tunnel in DBCode, you can choose from the following options when storing sensitive information such as passwords:

Save Password in VSCode Secret Storage (Default)

The password is stored securely using VSCode’s built-in secret storage.

Benifits:

• Passwords are not included in the settings.json file, ensuring they are not synced with other connection details.
• This is the default and most secure option for local password storage.

Encrypt and Save Password

The password is encrypted with a user-provided encryption string and the encrypted value is stored saved in the settings.json file. The encrypted will be synced across devices.

How It Works:

• You’ll be prompted to set an encryption string during setup, which is not stored, and should be kept confidential.
• The password is encrypted using the string before being saved with the connection information.
• When the password is needed for a connection, the encrypted value is retrieved and you will be prompted to enter the original encryption string used to encrypt it.

Save Password for Session

The password is stored temporarily in memory and remains valid only for the current DBCode session. Upon restarting DBCode, the password must be re-entered.

Don’t Save Password

The password is not saved and must be entered manually each time you connect.

Save Password in Plain Text (Not Recommended)

The password is stored in plain text within the settings.json file. If VSCode settings sync is enabled, this file, including the password, will be synced across devices in plain text

• Recommendation:
  Avoid using this option due to security risks of storing passwords in plain text. Instead use the encrypt and save option is syncing passwords is desired.