Android: Storing username and password?

by

Most Android and iPhone apps I have seen use an initial screen or dialog box to ask for credentials. I think it is cumbersome for the user to have to re-enter their name/password often, so storing that info makes sense from a usability perspective.

The advice from the (Android dev guide) is:

In general, we recommend minimizing the frequency of asking for user
credentials — to make phishing attacks more conspicuous, and less
likely to be successful. Instead use an authorization token and
refresh it.

Where possible, username and password should not be stored on the
device. Instead, perform initial authentication using the username and
password supplied by the user, and then use a short-lived,
service-specific authorization token.

Using the AccountManger is the best option for storing credentials. The SampleSyncAdapter provides an example of how to use it.

If this is not an option to you for some reason, you can fall back to persisting credentials using the Preferences mechanism. Other applications won’t be able to access your preferences, so the user’s information is not easily exposed.

More Related Contents:

  1. Android saving file to external storage
  2. Android create folders in Internal Memory
  3. Google Cloud Endpoints and user’s authentication
  4. Firebase Auth using phone number and password
  5. ASP.NET Web API Authentication
  6. HttpURLConnection worked fine in Android 2.x but NOT in 4.1: No authentication challenges found
  7. How to create a file on Android Internal Storage?
  8. Taking screenshot programmatically doesnt capture the contents of surfaceVIew
  9. Using Google account to log in to an Android Application
  10. Embed activity feed of a public Facebook page without forcing user to login/allow
  11. Android SharedPreferences limitations?
  12. Proxy which requires authentication with Android Emulator
  13. Write file to location other than SDcard using Android NDK?
  14. EditText underline below text property
  15. how to check internal and external storage if exist
  16. Android getting external storage Absolute Path
  17. Android Facebook authorization – can not log in when official Facebook app is installed
  18. Android: Save file permanently (even after clear data / uninstall)
  19. How do popular apps authenticate user requests from their mobile app to their server?
  20. How to check if user is logged in with FB SDK 4.0 for Android?
  21. is there a maximum size to android internal storage allocated for an app?
  22. How to find the amount of free storage (disk space) left on Android? [duplicate]
  23. Read video stored on android native storage in my Ionic app
  24. How to check device compatibility for finger print authentication in android
  25. How can I get my Android device Internal Download Folder path? [duplicate]
  26. Why does my Android app crash with a NullPointerException when initializing a variable with findViewById(R.id.******) at the beginning of the class?
  27. Android app crashes when launched in debug mode
  28. How to resize image (Bitmap) to a given size? [duplicate]
  29. Multi-State Toggle Button
  30. Difference between android dimension: pt and dp

Leave a Comment