Uploaded image for project: 'Debezium'
  1. Debezium
  2. DBZ-8078

Standard Webhooks auth secret config value is not marked as PASSWORD_PATTERN

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Major Major
    • 3.0.0.Alpha2
    • 3.0.0.Alpha1
    • debezium-server
    • None

      Bug report

      After merging the PR for Standard Webhooks authentication support for the HTTP sink, a new configuration value debezium.sink.http.authentication.webhook.secret has been introduced.

      Currently this secret does not match the PASSWORD_PATTERN property, and will be logged to the console when the server is starting.

      What Debezium connector do you use and what version?

      debezium-server@nightly

      What behavior do you expect?

      The webhook secret should not be logged as it contains sensitive information.

      What behavior do you see?

      The webhook secret is logged as a config value:

        1. image-2024-07-19-12-38-15-894.png
          image-2024-07-19-12-38-15-894.png
          40 kB

              Unassigned Unassigned
              timowilhelm Timo Wilhelm (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: