I have an Android application that uses a Restful API retrieve data from the server and display them. To access the API and try to let it safer, I use basic authorization and Https as various tutorials on the internet suggest.
My question is how to store safely the User and Password regarding basic authorization on my Android application? Will only put credentials in a class of my Android application and then obfuscate the code with Proguard is safe enough? Or is there another way to keep it safe in my Android application? I ask this because saw several people talking to obfuscate the application code only difficult to reverse engineer, but does not make it impossible to apply. What would make my choice to keep the credentials of the basic authorization in a class of my application a bad idea. Does anyone have any suggestions? -- You received this message because you are subscribed to the Google Groups "Android Developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/android-developers. To view this discussion on the web visit https://groups.google.com/d/msgid/android-developers/b31a8dd1-47af-4e54-9902-f5c0480254ea%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
