You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Currently we have username and password in the fibad_default_config.toml file. And there's nothing that would prevent a user from adding their real credentials and pushing to their repo.
It would be nice to introduce some low friction approach that allows users to specify their credentials in a file external to the config toml and that is listed in .gitignore.
If we used a credentials.ini file, it could look like the following:
The user would be expected to either update the credentials.ini or provide their own and update their config accordingly.
There would be a little boilerplate code in the downloader to read and use the .ini file contents and allow us a little more protection against accidentally committing creds.
The text was updated successfully, but these errors were encountered:
Currently we have username and password in the
fibad_default_config.toml
file. And there's nothing that would prevent a user from adding their real credentials and pushing to their repo.It would be nice to introduce some low friction approach that allows users to specify their credentials in a file external to the config toml and that is listed in .gitignore.
If we used a
credentials.ini
file, it could look like the following:In
fibad_default_config.toml
we could include keyA default
credentials.ini
looking like:The user would be expected to either update the
credentials.ini
or provide their own and update their config accordingly.There would be a little boilerplate code in the downloader to read and use the .ini file contents and allow us a little more protection against accidentally committing creds.
The text was updated successfully, but these errors were encountered: