Uploaded image for project: 'Red Hat 3scale API Management'
  1. Red Hat 3scale API Management
  2. THREESCALE-6168

Hide client_id and client_secret

    XMLWordPrintable

Details

    • Feature Request
    • Resolution: Can't Do
    • Major
    • None
    • 2.9 GA
    • System
    • False
    • False
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • 0
    • 0% 0%
    • Undefined

    Description

      Customer is raising concern about the data returned from /admin/api/applications.json.
      In the case of Client Credentials Flow Enabled a user can issue a JWT and act as the application.

      It could be useful having the options to hide sensitive data in the response.

      Attachments

        Issue Links

          relates to

          Feature Request - Feature requests from customers and/or users THREESCALE-4743 System grafana dashboard(s) and Prometheus rule definition (system)

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              Unassigned Unassigned
              rhn-support-cpalmier Carlo Palmieri (Inactive)
              Votes:
              1 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: