Hadley Wickham
Hadley Wickham
Hmmm, I guess since I wrote that httr vignette I'm no longer sure that the keyring is that much more secure. I think it's theoretically more secure, but in practice...
Hmmmm, this all feels like it should maybe be a separate vignette that's env vars vs keychain, but then httr2 doesn't feel like quite the right place for it. Maybe...
Right, we'd point to it everywhere we mention env vars.
I updated the keyring readme: https://keyring.r-lib.org/dev/. Do you think that's sufficient for selling it as an alternative to env vars or do I need to write more?
I think this requires more than just a change to the docs: for it to be a useful (and meaningfully more secure workflow), `secret_encrypt()` and friends need to know to...
See notes in related PR; need more work in keyring until we can enable this automatically.
@arnaudgallou I'm not sure that's a compelling argument — if you're worried about the physical security of the hard drive, you should be encrypting the whole thing.
/document
I think you have to be an admin for those helpers to work
I think the simplest way to do this is to also store a hash of the encrypted value in `secret_encrypt_raw()`; that way we we decrypt we can check whether or...