patrickfav / armadillo

A shared preference implementation for confidential data in Android. Per default uses AES-GCM, BCrypt and HKDF as cryptographic primitives. Uses the concept of device fingerprinting combined with optional user provided passwords and strong password hashes.
https://favr.dev/opensource/armadillo
Apache License 2.0
280 stars 52 forks source link

Support changing password #13

Closed davidmigloz closed 6 years ago

davidmigloz commented 6 years ago

It would be nice to be able to change the user-provided password easily.

This means that all the data has to be decrypted with the old password and re-encrypted with the new one.

It can be handy when you want to switch from a default password to a user-provided password. And for later when the user wants to change it.

patrickfav commented 6 years ago

Agree.

patrickfav commented 6 years ago

I added a first POC implementation of changePassword(). Was pretty straight forward and could easily be used to migrate null passwords.

@davidmigloz If you like you can have a look at it, I pushed it on feat-13-change-pw

davidmigloz commented 6 years ago

It looks pretty good 👍

patrickfav commented 6 years ago

Was merged

davidmigloz commented 6 years ago

I'm working currently in adding the change password feature to the sample app.