I have an application I'm working on that connects to an SQL Server Express 2013 Database. Currently, I have hard coded the connection string into a settings module. This works, but it has draw backs.
1. If a user wants to take this program and connect to a different database, it needs to be recompiled for them.
2. I don't know how secure it is.
3. If the password on the database changes, we have to recompile...
And so on.
The first time a user uses the program, I could prompt for a connection string, username and password. But where would/should I store that - and what would be the most secure method.
I'm assuming there are several different ways to answer this question, and from my research it seems that no way is really fool proof. So, any suggestions would be appreciated!
Thank you for your help!!!