Reputation: 3697
Best way to store user information in iOS app
I am developing an app that requires a user to register and log in. Currently to date I have been storing their userID (retrieved from an API), username and hashed password (plus a few other bits of information) in user defaults however after doing some research on security, users are able to modify these defaults as they are stored in a text file.
My concern is that I would not want a user to change the userID and access other users information. What would be the best way to secure the data in the app?
All information is retrieved from an online API and I am not using Core Data.
I have looked in to Keychain but would this be overkill to store userID?
Upvotes: 0
Views: 1175
Answers (1)
Reputation: 11143
The keychain would not be overkill, that kind of thing is what it's for.
Really though it sounds like a bad security problem in your API. If the user can login and can then access the data of every other user via the API and then if they fiddle with some values, that's no good.
Upvotes: 1
Related Questions
- iOS: How to store username/password within an app?
- Shoud I store user-identifier in keychain using sign in with apple?
- Securing data in iOS. Keychain or any other approach?
- iOS Swift 3 "Login" apps: Best Method for storing/passing a User
- NSUserDefaults or keychain is better to save username and password in iPhone app
- Recommended way to store users credentials iOS?
- where to store user info after login to swift ios app
- Best way to store user information for my iOS app
- Advise where to store data for iOS app
- Store and retrieve user data in IOS keychain