Details
-
Suggestion
-
Resolution: Duplicate
-
None
Description
The current implementation has the user add the credentials in a plain text header that anyone with access to can read and use. This is even promoted
Automation for Jira - Send web request using Jira ... - Atlassian Community
For basic auth the password should be obfuscated
And there should be additional options for other types of Auth
Attachments
Issue Links
- duplicates
-
JSWCLOUD-22729 As an admin, I want to be able to hide values in automation rules, e.g. web requests using tokens in header
- Closed