I'm working on an integration with an external service that requires per-user authentication, like Facebook for example, but unlike Facebook only allows username+password for this authentication. My basic security background is uncomfortable at the thought that this means I actually need to collect user login credentials for the external service and store them unhashed.
Is there a standard solution to the problem of needing plain-text user passwords available?