Have the "fhconfig.properties" any sensitive information into the client application?

Solution Verified - Updated -

Issue

  • We are concerned about the security implications of including app ids, push secrets, etc in fhconfig.properties since it can be easily extracted from an apk file. In case of Android native client application, you can get these value from asset/fhconfig.properties of an APK file.
  • I want to move these setting under ProGuard

Environment

  • Red Hat Mobile Application Platform (RHMAP)
    • 3
    • 4
  • Client authentication

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.