I have never worked with databases before. Now there was a task to fill the database on a remote server through an application that is written in Python. The application will use one-time, but quite a large number of people. The database will be kept confidential user data. Well, the question arises: how to secure the password and database address in the Python source codes, if you need to explicitly specify the address and password when connecting to a remote database. How do they do it? Do I need the connection code to make extensions in C or to encrypt the database? Tell me?

  • one
    For such purposes implement API. Next, the application works with this API. No data from the database stored in the application code in any case impossible. The user is authorized in the application, receives a token, and then this token is sent each time along with the request. Token allows you to control access to the server. - Colibri

0