Security Suggestion: storing API Key not in clear text has it is in data.json
JOduMonT opened this issue · 2 comments
As a long-time user of LanguageTool Premium; your plugin is very useful to me and made a difference when I had to choose my day-to-day tool.
While; I thought it was an obsidian thing, then an obsidian team told me the core team do not store in plain text API key; so would you be able to fix that, please?
https://forum.obsidian.md/t/store-secrets-like-api-key-outside-of-data-json/56035
Sure, I would do that, if I knew how. Sadly, there is no documentation whatsoever and google gave me no answer either.
I asked in the discord server and waiting for a reply.
It seems like the current standard is using https://www.electronjs.org/docs/latest/api/safe-storage which is not available on Mobile Devices.
The best solution would be to add this as a feature toggle. I, personally, want the key to be in data.json because it synchronizes with all my devices.