Hi Jens, That's interesting. I didn't know that.
So is there any benefit to using the CBLAuthenticator for basic authentication then? If not and it really doesn't matter other than the small benefit of the credential, then I'll use the NSURLCredential instead since a small benefit is better than no benefit. I do store the password in the keychain already though and obtain it from there whenever I need it. Thanks, Brendan On Wednesday, March 16, 2016 at 12:27:09 PM UTC-6, Jens Alfke wrote: > > > On Mar 16, 2016, at 11:11 AM, Brendan Duddridge <[email protected] > <javascript:>> wrote: > > So then I should use only a CBLAuthenticator? > > > If you just need HTTP auth, you can use either. An NSURLCredential has the > small advantage that the password will only be in memory while an HTTP > request is being assembled and sent. This is good if you’re super paranoid > about malicious code scanning your address space looking for sensitive data > (as happened in the Heartbleed attack.) > > —Jens > -- You received this message because you are subscribed to the Google Groups "Couchbase Mobile" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/mobile-couchbase/43b40129-8a24-401b-9497-3f3551aa8c24%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
