Allow an encrypted version of the token to be stored

Post your ideas and suggestions how to improve the game.

Moderator: ickputzdirwech

Daholli
Burner Inserter
Burner Inserter
Posts: 7
Joined: Mon Apr 18, 2022 3:43 pm
Contact:

Allow an encrypted version of the token to be stored

Post by Daholli »

On linux currently, both when using a headless server and when using the normal client the token that the factorio uses is saved in plaintext in the config file.

It would be nice if we could specify an encryption and e.g. an ssh or an age key to encrypt the token with.
I am using NixOs and currently when setting up the server i have to decrypt my token to write it into the config and then have it on my system decrypted, which is ok, but not the preferred way :D.

Looking forward to 2.0, you guys rock!

Best Holli
Attachments
Screenshot_20240427_223131.png
Screenshot_20240427_223131.png (112.49 KiB) Viewed 787 times
Rseding91
Factorio Staff
Factorio Staff
Posts: 14594
Joined: Wed Jun 11, 2014 5:23 am
Contact:

Re: Allow an encrypted version of the token to be stored

Post by Rseding91 »

So you want to enter a password to decrypt it every time you start the game?
If you want to get ahold of me I'm almost always on Discord.
Illiander42
Filter Inserter
Filter Inserter
Posts: 530
Joined: Mon Feb 05, 2018 10:01 am
Contact:

Re: Allow an encrypted version of the token to be stored

Post by Illiander42 »

Looks like they want to store the game password in an encrypted file on the server host?
Rseding91
Factorio Staff
Factorio Staff
Posts: 14594
Joined: Wed Jun 11, 2014 5:23 am
Contact:

Re: Allow an encrypted version of the token to be stored

Post by Rseding91 »

If something is encrypted someone needs to provide a key to decrypt it. That just sounds like “don’t keep me signed in” with extra steps.
If you want to get ahold of me I'm almost always on Discord.
Illiander42
Filter Inserter
Filter Inserter
Posts: 530
Joined: Mon Feb 05, 2018 10:01 am
Contact:

Re: Allow an encrypted version of the token to be stored

Post by Illiander42 »

I work on servers with service accounts that automagically decrypt everything so much that I had honestly forgotten that.

You just get used to storing everything encrypted, and trusting the service account to have the keys and sort it out for you.

Of course, then when you get it it's already been automagically decrypted...

---

Yeah, this is making less and less sense.
Daholli
Burner Inserter
Burner Inserter
Posts: 7
Joined: Mon Apr 18, 2022 3:43 pm
Contact:

Re: Allow an encrypted version of the token to be stored

Post by Daholli »

Rseding91 wrote: Sun Apr 28, 2024 8:27 pm So you want to enter a password to decrypt it every time you start the game?
I thought about it some more, and i think generally having the token is probably ok, I just really came across this problem, because I both wanted my configuration publicly available and declaratively saved in the config, which basically had me running into the encryption issue.

Currently I just have an age key that is used to decrypt the token everytime it is being built, but then the token still ends up in plain text somewhere.
I dont really have a solution at the top of my head, unless you are using a hardware key you would end up having to put a password in or having the private key on the system, which would put you back to square one.

So generally my idea, which sounded much better in my head 2 days ago isnt that great :D
Post Reply

Return to “Ideas and Suggestions”