On Wed, Feb 13, 2013 at 2:16 AM, saladbowl <chloefothe...@gmail.com> wrote: > Thanks Nikolay, this is a really good and helpful answer. > > So, from your experience - do you think most application developers go down > the recommended token-based route? or just accept that AccountManager relies > on root permissions and store the username and password directly (if there > is no extremely sensitive data, e.g. credit card details)?. >
I can't really know about other developers. Tokens require some server-side infrastructure, so it's safe bet that most people don't do it. But then again, there is no real need to use AccountManager to store credentials, unless you need to integrate with background sync or other system services. It doesn't really provide more protection then storing passwords (in plain text or encrypted) in your own app's private directory. -- -- You received this message because you are subscribed to the Google Groups "Android Developers" group. To post to this group, send email to android-developers@googlegroups.com To unsubscribe from this group, send email to android-developers+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/android-developers?hl=en --- You received this message because you are subscribed to the Google Groups "Android Developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to android-developers+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/groups/opt_out.
