Masking the httpResponseBody as it contains secret
long-term
P
Polite Tortoise
Masking the httpResponseBody as it contains secret
We are wanting to generate a token via a HTTP Step and store that token in an output variable and hoppefully obfuscate it from view if possible.
how can we mask the httpResponseBody as this also contains a secret?
Log In
Rohan Gupta
Merged in a post:
HTTP step - support input,output variable , header and responsebody of type secret.
N
Novel Cod
Essentially any of that could hold a secret txt which you want to mask in pipeline execution. Having a type secret would be helpful on all these fields
Rohan Gupta
Merged in a post:
http step - allow header with variable type secret
N
Novel Cod
Most times you have to pass http basis auth or auth as authentication in the header field of http test. Would be easy if the header field support type secret. (Although there is a workaround today to use var expression to secret indirectly using <+secrets.getValue()>. But having secret directly referenced would be a consistent experience in the UI. Also it will allow the secret to be masked
Rohan Gupta
long-term
THis is feasible in the short term you could use a shell script step which supports this use case.