Loading...

XML

Word

Printable

Type: Epic
Resolution: Unresolved
Priority: Major
Fix Version/s: None
Affects Version/s: 2.11.3 GA
Component/s: System
Labels:
- easy-fix
- roadmap
- support

Epic Name:
Client secret masked by default
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
3Scale PT Tested upstream:
Not Started
3scale PT Docs:
Not Started
3scale PT Product Specs:
Not Started
3scale PT Product Update Ready:
Not Started
3scale PT Released In Saas:
Not Started
3scale PT Verified Product:
Not Started
Target Release:

2.16.0 GA

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

Current behaviour
On the RH SSO Integration screen in the Admin Portal, the client secret is displayed in the clear text. This causes an issue when there are more complex role and responsibility segregation.

Expected behaviour
The client secret should be masked by default. Also when writing it to configure the integration it would be preferable to be able to hide it like a password.

links to

RHEA-2025:146559 Red Hat 3scale API Management 2.16.0 Release - Container Images

mentioned on

Merge request - Updated US source to: bfae7df Mask Client Secret in SSO Integrations details

Merge request - Updated US source to: c444155 THREESCALE-8735: Client secret in clear text in the API Manager UI (RH SSO Integration) Part 2 (#3856)

Assignee:: Unassigned

Reporter:: Chandrasekhar Vajjhala (Inactive)

Tester:: Matej Dujava

Developer:: Luis Villen Jaldon

Votes:: 1 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: 2022/09/15 8:28 PM

Updated:: 2025/09/24 9:13 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates

Hide