Uploaded image for project: 'Subversion'
  1. Subversion
  2. SVN-4145

Master passphrase and encrypted credentials cache

    XMLWordPrintableJSON

    Details

    • Type: New Feature
    • Status: Open
    • Priority: Critical
    • Resolution: Unresolved
    • Affects Version/s: 1.7.x
    • Fix Version/s: 1.10-consider
    • Component/s: libsvn_subr
    • Labels:
      None

      Description

      Like all popular web browsers, Mozilla Firefox allows you to optionally cache
      passwords used for site logins. Site credentials are cached on disk, and in
      plaintext by default. However, Firefox allows you to optionally configure a
      "Master Password". This password (or passphrase) is used to encrypt the on-disk
      cached site credentials, functioning effectively the same way that a keyring
      provider and associated passphrase would work. Firefox will challenge the user
      for the master password the first time it needs to consult its credentials
      cache, and will leave the cache "unlocked" for the duration of the application's
      lifetime.
      
      Subversion should be able to do something similar, allowing users to optionally
      employ a master passphrase which is used to encrypt and decrypt other sensitive
      information stored in its authentication credential cache(s).
      
      See http://wiki.apache.org/subversion/MasterPassphrase for design thoughts.
      

      http://wiki.apache.org/subversion/MasterPassphrase

        Attachments

          Activity

            People

            • Assignee:
              cmpilato C. Michael Pilato
              Reporter:
              cmpilato C. Michael Pilato
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated: