Mask user input
complete
E
Emerald Bobcat
Hi, I have a requirement in one of the pipelines to fetch a password as a runtime input, I cant store this in Secret Manager. However, I need to be able to mask the string when the user types like a password field and it shouldnt display the text.
Could you please help how can I achieve this?
regards,
Hari
Log In
Canny AI
Merged in a post:
Variable for runtime password input
R
Rose Muskox
I am trying to find a way to create a variable of type secret where we need to enter password at runtime. Currently available options does not allow that. With string type variable it does not mask password and print the password in logs. (Save a variable as a password for particular execution without requring to save it in secret manager, or a way to mask a particular variable in the pipeline)
Prateek Mittal
complete
Sudarshan Purohit
Thank you for the clarification, Rose Muskox. We are adding this to our long term roadmap, and investigating on the best way to implement this.
R
Rose Muskox
To Clarify further- our user case require to login to a remote host (On-prem) using personal account and then which has dzdo access to root. This scenario implies that we can not store personal account password in Secret manager and need a way to input the password at run time which is masked and does not print in execution logs.
This is very common use case on Linux VM's where access model is restricted.
Sudarshan Purohit
Thank you for your feature request. We will be reviewing this with the engineering team for feasibility and get back you on our decision.
Rohan Gupta
pending feedback
Hi Emerald Bobcat, Prateek Mittal responded to your request a while back did you have a chance to review?
We do have a mechanism to refer them but they will be stored in the Harness Secret Manager. Do you not even want to save them in the Harness Secret Manager? If that is the case, that will be a security risk.