I have a client/server application which requires the user to login. What I want to do is a "Remember me" functionality, so the user is not forced to login everytime he opens the application (the "real" credentials are stored in MS SQL Server)
The application is only used in a local network and based on WinForms.
I know most of you would say, that a password should never be stored.
But where is the best place to store it?
Should I use the windows credentials?
Should I store the credentials in a encrypted (config) file?
Thanks for your help