Idea ID: 2694949

Provide an option to mask off the script contents for the Shell plugin

Status : Already Offered
Already Offered
See status update history
over 1 year ago

The current Shell plugin will output the contents of the Shell script.  If the Shell is used to execute an import of Oracle dump file, the user and password to connect to the database will be exposed. Please evaluate and provide an option for the implementation team to decide whether to enable the debug.  If debug is enabled, the script contents will be shown during the runtime execution.  Otherwise, please shows the following contents: "The contents of the script is confidential and had been masked off.  Please contact the System Administrator if you think otherwise."

Tags:

  • usernames and passwords should be stored as secured properties. Using these will **** mask the credentials.

  • I assume the password is sensitive piece in this case. Is the password provided as secured property? If it is provided as secured property, the password will be masked off automatically by DA.

    Alternatively, the user can provide the entire script as secure property. In this case the content of the entire script will be masked off.