我需要簽署文檔，但為此我需要通過 json 傳遞密碼和證書路徑使用這個(gè)真的安全嗎？我如何在 php 配置文件中實(shí)現(xiàn)這些數(shù)組？這樣就沒有人（外部公眾）可以訪問數(shù)據(jù)，我知道 php 可以做到這一點(diǎn)。我正在配置一個(gè) api，其文檔中包含以下內(nèi)容：配置 API API 配置是通過文件甚至 JSON 格式的數(shù)組完成的。該 JSON 數(shù)組包含 API 所需的數(shù)據(jù)，以了解重要文件的位置，例如數(shù)字證書和其他相關(guān)信息。{"atualizacao":"2016-02-02 08:01:21","tpAmb":2,"pathXmlUrlFileNFe":"nfe_ws3_mod55.xml","pathXmlUrlFileCTe":"cte_ws1.xml","pathXmlUrlFileMDFe":"mdfe_ws1.xml","pathXmlUrlFileCLe":"cle_ws1.xml","pathXmlUrlFileNFSe":"","pathNFeFiles":"/MyApp/nfe","pathCTeFiles":"/MyApp/cte","pathMDFeFiles":"/MyApp/mdfe","pathCLeFiles":"/MyApp/cle","pathNFSeFiles":"/MyApp/nfse","pathCertsFiles":"/MyApp/certs/","siteUrl":"http://myapp.local","schemesNFe":"PL_008h2","schemesCTe":"PL_CTE_104","schemesMDFe":"MDFe_100","schemesCLe":"CLe_100","schemesNFSe":"","razaosocial":"Fulano de tal Ltda","siglaUF":"AM","cnpj":"547678524000133","tokenIBPT":"AAAAAAA","tokenNFCe":"GPB0JBWLUR6HWFTVEAS6RJ69GPCROFPBBB8G","tokenNFCeId":"000002","certPfxName":"myapp_2016.pfx","certPassword":"JIO&$@2990_zx","certPhrase":"tajomstvo","aDocFormat":{"format":"P","paper":"A4","southpaw":"1","pathLogoFile":"/MyApp/publico/images/logo.jpg","logoPosition":"L","font":"Times","printer":"hpteste"},"aMailConf":{"mailAuth":"1","mailFrom":"roberto@myapp.local","mailSmtp":"smtp.myapp.local","mailUser":"roberto@myapp.local","mailPass":"heslo$","mailProtocol":"ssl","mailPort":"587","mailFromMail":null,"mailFromName":null,"mailReplayToMail":null,"mailReplayToName":null,"mailImapHost":null,"mailImapPort":null,"mailImapSecurity":null,"mailImapNocerts":null,"mailImapBox":null},"aProxyConf":{"proxyIp":"","proxyPort":"","proxyUser":"","proxyPass":""}}文檔沒有顯示如何實(shí)現(xiàn)它，它只是顯示了 json 數(shù)組的示例，這也可以在 php 文件中完成，我想我應(yīng)該將該數(shù)組放在 config.json 之類的內(nèi)容中并在控制器中調(diào)用它，我不知道這個(gè)調(diào)用會(huì)怎樣，我會(huì)把它放在哪里，我可以把它放在任何地方，但我最關(guān)心的是需要將個(gè)人手指作為密碼放在這個(gè)矩陣中，json是一個(gè)可以訪問的文件任何人通過瀏覽器，我不知道按照他們的建議實(shí)施是否合適且安全。這真的是最佳實(shí)踐嗎？