If you store passwords encrypted at rest à la my SecureStore, this isn’t an issue.

https://github.com/neosmart/securestore-rs