Secure sensitive environment variables #1
Description
According to the Expo Docs:
"Do not store sensitive info, such as private keys, in EXPO_PUBLIC_ variables. These variables will be visible in plain-text in your compiled application."
That's exactly what I'm doing right now...
This needs to be fixed. Here's some readings/discussions that can be a starting point:
- https://reactnative.dev/docs/security#storing-sensitive-info
- https://www.reddit.com/r/reactnative/comments/zvycru/securely_storing_sensitive_api_key_in_expo_app/
If possible, implementing this with Redis caching would be sweet because I have to present a workshop about redis soon, but this isn't very secure based on my two minutes of googling.