I would like to know if I could compromise my microsoft account (hacker accessing my One Drive files and microsoft account) by putting my connection credentials for OneDrive in a script on the FME Cloud that is then accessed via a Server App.
+2
Hi @john.beck
Why are you storing Microsoft credentials (I'm assuming username/password) in a script on FME Cloud?
Your credentials would be compromised if someone were able to log into FME Server (Cloud) and navigate to the resources where you've saved them and then copy them.
I would recommend using a web connection - that way you're never storing username/password on the FME Cloud machine. Only tokens will be stored, encrypted, in the FME Server database. These tokens are easy to revoke, and will only be given permissions for specific resources/actions.
You can read more about that in the Microsoft docs.
Thanks for the answer. I am storing the credentials (in a FME Server web connection) so that script users (via a Server App) can access data on my OneDrive account. The FME Cloud is protected by username/password, so I am not too worried about someone finding the credentials that way.
I am new to FME Cloud and don't understand tokens. Is there some good FME documentation on using tokens?
Thanks for the help.
Userlevel 2
+10
- Safer
- 458 replies
-
5 October 2021
Thanks for the answer. I am storing the credentials (in a FME Server web connection) so that script users (via a Server App) can access data on my OneDrive account. The FME Cloud is protected by username/password, so I am not too worried about someone finding the credentials that way.
I am new to FME Cloud and don't understand tokens. Is there some good FME documentation on using tokens?
Thanks for the help.
Hi @john.beck,
You can find documentation for Web Connections here: http://docs.safe.com/fme/html/FME_Desktop_Documentation/FME_Workbench/!NamedConnections/options_web_service_connections.htm
As for tokens, you can navigate to the Tokens page by clicking the User Settings icon in the top right in FME Cloud > Manage Tokens. More information can be found here: https://docs.safe.com/fme/html/FME_Server_Documentation/WebUI/Manage-Token.htm
+2
Thanks for the answer. I am storing the credentials (in a FME Server web connection) so that script users (via a Server App) can access data on my OneDrive account. The FME Cloud is protected by username/password, so I am not too worried about someone finding the credentials that way.
I am new to FME Cloud and don't understand tokens. Is there some good FME documentation on using tokens?
Thanks for the help.
@john.beck The tokens I was referring to in my previous answer are oauth tokens - which you can read about here.
FME Server token documentation is available here.
Reply
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.