I'm app developer. My app for Confluence uses Atlassian connect and is published on the Marketplace.
As part of the functionality I'm offering an option to access a password protected remote servers. Username and password are stored as app parameters and queried
Recently I've discovered that the password is published in clear on the Confluence page and there is no control from my side over it.
What is the right way to store and protect secrets stored in the application properties?
