Currently the encrypted datamanager only stores the IV, which is correct. Might exist some scenarios where developers will generate the keys based on PBKDF2 with:

AeroGear.Crypto().deriveKey( PASSWORD );

The issue might happen during the encryption when the developer wants to decrypted the data but doesn't have the salt to generate the key again. For a detailed example, please see:

https://github.com/aerogear/aerogear-js/blob/d2505050563f314375b9e158cc3cbe2f98f552ae/tests/unit/crypto/aerogear.crypto.js#L35