Hi Hans, Passwords are currently not stored securely. I'd like to have them stored in Eclipse's secure storage mechanism (as is the case for MercurialEclipseReviewBoard). This should be very easy, I just haven't had the time. Feel free to file a bug for this.
For today one could configure the mercurial keychain extension to store passwords securely. Also one could use SSH configured with non-interactive login. On Thursday, January 24, 2013 8:11:43 AM UTC-5, [email protected] wrote: > > Hi! > > It is convenient that MercurialEclipse stores repository passwords, but I > would sleep sounder if I understood how and where MercurialEclipse stores > them, and how safe that storage is. > > From searching/experimenting, it appears that data stored by e.g., the > Clone wizard is stored in the Workspace directory under > .metadata/.plugins/com.vectraceMercurialEclipse. > > Does the .key file in that directory contain the password in some form of > hash? If so, what kind of hash? > > Why is don't you use the Mercurial keyring extension to store the > credentials in the standard OS credentials manager? > > I'd greatly appreciate any information on these points! > > Best regards, > Hans > --
