I think it is better to have any secret values in text boxes represented by dots by default, but also be able to show them by clicking a check box. Otherwise secrets like oauth2 client secrets are quite long and it is hard to verify if we have typed it correctly.
On Fri, Mar 28, 2014 at 6:32 PM, Prabath Siriwardena <[email protected]>wrote: > Please remove following from the UI.. > > Token Endpoint / User Info Endpoint / Authorization Endpoint.. > > Also please make the text box type to password - for the client secret.. > > How do we store client secret ? Please make sure we encrypt it before > storing.. > > -- > Thanks & Regards, > Prabath > > Twitter : @prabath > LinkedIn : http://www.linkedin.com/in/prabathsiriwardena > > Mobile : +94 71 809 6732 > > http://blog.facilelogin.com > http://blog.api-security.org > -- Thanks & Regards, *Johann Dilantha Nallathamby* Senior Software Engineer Integration Technologies Team WSO2, Inc. lean.enterprise.middleware Mobile - *+94777776950* Blog - *http://nallaa.wordpress.com <http://nallaa.wordpress.com>*
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
