Secret/password management

SinanMaric · April 30, 2024, 10:13am

Hi, community

We have several integrations, and we want the user to be able to enter the credentials once, and then it should be stored. However, we want these stored credentials to not be visible for the user. So, we want them to have a value, not not be seen.

How should we do this? Could we do it by using conditional permissions and only giving the user Create-permission, and not Read? If so, would we be able to use these credentials in our services when doing we requests?

Thanks

isabelslorer · May 2, 2024, 12:12pm

Hi Sinan,

Your suggestion will work

This is also a typical case where you want to use “run service as”, which means that you use a service to perform the operation with a service account that is allowed to set the values.

Topic		Replies	Views
Update user - Missing permissions? Ask the community permissions	8	278	November 6, 2023
Allowing more users than max user quota in a (public) app containing sensitive information Ask the community security	1	236	April 14, 2023
Best practice for Roles in PROD vs Test/dev Ask the community security	5	191	March 4, 2024
Access view from other app Ask the community	3	218	May 2, 2023
Missing last logged in field Bugs and feature requests	1	147	November 8, 2023

Secret/password management

Related Topics