# Passwords and Password Plugins Hop provides password obfuscation as a way to prevent storing passwords as clear text. Obfuscation is the deliberate act of creating source or machine code that is difficult for humans to understand\[[1](https://en.wikipedia.org/wiki/Obfuscation_\(software\))]. With obfuscated passwords, Hop provides a way to store passwords in a way the makes them hard (but not impossible!) to read. Obfuscated passwords are read by Hop and are converted to the original password as late as possible (e.g. to pass to a database when creating a connection). ### Password obfuscation in Hop Obfuscate passwords are stored in Hop metadata with the 'Encrypted' prefix. The example below shows a database connection with an obfuscated password 'abcd. ```highlight { "rdbms": { "POSTGRESQL": { "databaseName": "DBNAME", "pluginId": "POSTGRESQL", "indexTablespace": "", "dataTablespace": "", "accessType": 0, "hostname": "localhost", "password": "Encrypted 2be98afc86aa7f2e4cb79ce10df90acde", "port": "5432", "pluginName": "PostgreSQL", "servername": "", "attributes": {}, "username": "dbuser" } }, "name": "DBCONN" } ``` ### Password obfuscation in Hop Server Obfuscated passwords for Hop Server can be stored in the server’s .pwd file. In the example below, Hop’s default server hop.pwd contains the username 'cluster' and the default obfuscated passowrd 'cluster' , with the 'OBF:' prefix. ```highlight cluster: OBF:1v8w1uh21z7k1ym71z7i1ugo1v9q,default ``` ### Password Encryption (Obfuscation) with Hop Encrypt Check [Hop Encrypt](https://github.com/mbertazz/hop-docs-md/blob/main/modules/ROOT/pages/password/hop-tools/hop-encrypt.XEkbAIeZcG) for more information on how to obfuscate or encrypt password for use in Hop or Hop Server. ### Password plugins Password handling in Hop can be implemented as plugins. The following plugin implementations are available: * [AES Two Way Password Encoder](https://docs.primeur.com/data-shaper-1.20/knowing-the-data-shaper-designer/passwords-and-password-plugins/aespasswords) --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.primeur.com/data-shaper-1.20/knowing-the-data-shaper-designer/passwords-and-password-plugins.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.