Don't store jira password in plaintext

[adamof]

Hey guys, I was wondering if there is a way to not store the Jira password in plaintext. I haven't done any research yet, but maybe you guys have thought about something?

[pedrocunha]

Hey @adamof - very good point and been want to address this for a long time, however depends on how you want to think about it. It is your machine which is theory should not be accessible. I bet you are probably also using the AWS CLI which also stores things in plaintext. Not saying that is a good pattern but sometimes plaintext is ok if you comfortable that there is some other auth mechanism. For example encrypted filesystem + system protected by a strong password.

Do you know what we could potentially implement here? I think JIRA supports OAuth authentication but the dance between CLI and webpage is a bit meh - a la Heroku.