There are two related concerns on this concept:
* protecting your credentials in source code
* protecting your credentials on the server
For the first concern, I like to use encryption management tools like
Blackbox (https://github.com/StackExchange/blackbox)
With an encryption management
that issue is unfortunately one of the great mythological stories of business
application development, how to configure an application such that the database
credentials are not present in a config file where they can be viewed.
the scope of that issue is way outside of SQLAlchemy and
Hello, what is the recommended way to encrypt/hide the connection
information that SA will use to connect to an Oracle database?
Related gitter discussion -
https://gitter.im/sqlalchemy/community?at=5ebec23f20d9bf305768a247
--
SQLAlchemy -
The Python SQL Toolkit and Object Relational Mapper
