Secret Strings/en

Aus expecco Wiki (Version 2.x)
Zur Navigation springen Zur Suche springen

During execution, strings might be needed or generated which should not be shown in the activity log or in the final report. Examples for such are passwords as entered by the operator or cryptographic keys as used temporarily.

The PasswordString Datatype[Bearbeiten]

By declaring the datatype of an output pin as PasswordString, the value written to the pin will get the secret attribute. That is an attribute of the datum (i.e. the String), and will be preserved and remain persistently attached to the string as it gets passed to other pins.

The activity logger and other expecco tools will not show the real value of those strings. However, as the datum is actually present somewhere in memory, a knowledgable user will actually be able to recover the string while expecco is running. Thus, this does not provide a 100% security; it does prevent printing those values by accident eg. in a report.

Secret Variables[Bearbeiten]

Secret Values[Bearbeiten]



Copyright © 2014-2024 eXept Software AG