Working with the Password field

The Password field securely hashes and stores user passwords. The Password field can also be used for authentication in the Baserow Application Builder.

This guide covers what a Password field is and its primary use case, the key security features (write-only and hashed), and how to add a Password field to your table.

Learn more: Configure field types

Password field type in Baserow

What is a Password field?

The Password field is a highly specialized, secure field for storing passwords.

This field is not for storing your team’s website passwords like a password manager, because it is write-only. Its main purpose is to create user tables to power the login element in the Baserow Application Builder.

It has two key security features:

  1. Write-only functionality: When you type into a Password field, the value is masked. Once you click away, the value is never shown again. You cannot view, copy, or retrieve the password; only overwrite it.
  2. Hashed storage: The password is not stored as plain text. It is stored as a secure “hash” (a long, scrambled string). This means that even in the event of a data breach, the original passwords cannot be read. They can only be checked for a match during a login attempt.

How to add a Password field

  1. In your table, click the plus sign + to add a new field.
  2. Select Password from the field type dropdown menu.
  3. Name the field (e.g., “User Password”).
  4. Click Create.

This will create a new, write-only field in your table.

Allow API endpoint authentication

This option exposes an endpoint where the row ID and password can be checked to see if they’re correct. This allows using Baserow as an authentication backend.

This field is the foundation for building secure user authentication (like a “users” table) for your own custom applications.

Learn more: Open API documentation

Frequently asked questions

What is the main purpose of this field?

You use the Password field to create a “Users” table in the Baserow Application Builder, which the Login element can then check against to authenticate users for your custom application.

Can I see or recover the password after I enter it?

No. For security, this field is write-only. Once you have entered a password and saved the row (by clicking off the cell), you can never see it again. You can only enter a new password to overwrite the old one.

What’s the difference between a Password field and a text field?

A Single Line Text field stores data as plain text, which is visible to anyone who can see the field. The Password field hides and hashes the data so it can never be read, only checked for a match.

Can I use this field to store my team’s website logins?

This is not recommended. Because the field is write-only, you would not be able to retrieve the passwords you save. For that use case, a Single Line Text field would be functional, but be aware that it is not encrypted and will be visible in the table.

Related content

Still need help? If you’re looking for something else, please feel free to make recommendations or ask us questions; we’re ready to assist you.