Sensitive API token information is exposed in gitlab environment due to DevTest configuration under config/properties
Article ID: 239834
Updated On:
Products
Issue/Introduction
Some of the Users at customer end reported that they see Sensitive API Token information is exposed in GitLab environment where the API Token information is configured in DevTest Config file as properties.
Need a way to encrypt the properties configured in DevTest Configuration files.
Environment
All supported DevTest releases.
Resolution
There is an option to encrypt the properties in configurations. You can select the Encrypt check box next to the property in configuration file and that should encrypt the property value. Please see the below screenshot.
If you are using the API_Token property in Testcase/VS, etc then you need to use the property as {{API_TOKEN_enc}} then the assets will show the encrypted value at runtime. If you use the property as {{API_Token}} then the assets will show the actual test at runtime. The below Screenshots show the usage of the properties and run time values.
Feedback
