In the PHP SDK source file zohocrm\php-sdk\src\com\zoho\oauth\clientapp\ZohoOAuthPersistenceHandler.php on line 100, the credentials for the zohooauth SQL database is hard coded.  This strikes me as a bad design:  It requires the developer to modify source code in the SDK, which will be overwritten whenever the SDK is updated.  It is not documented, and it goes against the convention of storing configuration information in the 

oauth_configuration.properties and configuration.properties files.  Shouldn't this login data be moved into a configuration file?
Also, these *.properties files are overwritten every time the source code is updated.  Can you please rename them to *.properties.default and allow the developer to rename the files so that they are not overwritten?