Most of the applications I write that use Firebird are Client/Server applications storing the user name and password to access the database in the connection string in the client machine.
Now with Firebird 2.1 you can use windows authentication so the client will use the windows user to log on to the server. This way I don't need to store the user name and password on the connection string in the client.
MS SQL Server has this feature for long time now. but it's great to have it on Firebird too.
Using Delphi or C++ Builder with DbExpress to accesss firebird in the dbconnections.ini file I just leave blank the user_name and password values, so I could have something like this:
Using the Firebird .Net Data Provider the connection string will end up like this:
If the windows user is an administrator it will log in to the server as the SYSADMIN user. if the user is not an admin then the user will log in as the windows user.
Now I only have to add the windows users as database users and Windows will take care of authenticate them.