[JITL-672] The "credential_store_password" parameter should be masked in the workflow history - SOS JIRA

XML

Word

Printable

Details

Type: Feature
Status: Released (View Workflow)
Priority: Medium
Resolution: Fixed
Affects Version/s: 2.0.0
Fix Version/s: 2.2.2
Labels:
None

Description

Current Behavior

When accessing a KeePass Credential Store database with the parameter credential_store_password that specifies a password as plain text then the password for the credential store is visible with the logs in the workflow history.

Desired Behavior

The credential_store_password parameter should be masked in the workflow history.

Maintainer Notes

Use of ** password for access to a credential store is strongly discouraged.
JS7 offers ** use of the credential_store_key_file parameter that points to a file that acts as a key to open the credential store database.

Test Instructions

Use a password protected KeePass.
Test with the following JITL Jobs:
- com.sos.jitl.jobs.mail.MailJob
- com.sos.jitl.jobs.mail.MailInboxJob
- com.sos.jitl.jobs.db.oracle.PLSQLJob
- com.sos.jitl.jobs.db.oracle.SQLPLUSJob
- com.sos.jitl.jobs.ssh.SSHJob

Attachments

Issue Links

relates to

JITL-687 The MailJob without Credential Store can throw a Null Pointer Exception

Released

Activity

People

Assignee:: Robert Ehrlich

Reporter:: Aditi Dubey (Inactive)

Approver:: Aditi Dubey (Inactive)

Votes:: 1 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 21 January 2022 13:11

Updated:: 31 March 2022 15:12

Resolved:: 27 January 2022 15:20