1

I am working on a mobile app (android, ios). Users login in the mobile app by entering email and password of office 365 and authentication is done through php-ews (exchange web services for office 365). We will be using few calendar and email retrieval web services in the mobile app.

What is the best way to encrypt the password while storing it in the backend database?

Jan Doggen
  • 8,799
  • 13
  • 70
  • 144
PraNav
  • 11
  • 2
  • 1
    Dont Store password in your database. If you made an O365 authentication, you use an OAUTH2 authentication process. So you should just save the Refresh Token. No need to encrypt it – Sébastien Pertus Apr 09 '16 at 15:53
  • can the OAUTH2 be used for on-premises exchange using EWS? – PraNav Apr 10 '16 at 00:36
  • 1
    I don't know about on-premise exchange, but I have already built a OAUTH2 function in to php-ews. Give it a try, see if it works https://github.com/Garethp/php-ews/blob/master/examples/basic/authenticatingWithOAuth.php – Gareth Parker Apr 10 '16 at 18:04
  • Prassee, no need to write a correction in a comment. You can [edit] your question. I have done that now. – Jan Doggen Apr 10 '16 at 18:19

0 Answers0