Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
NEW: Seamless Public Data Sharing with Qlik's New Anonymous Access Capability: TELL ME MORE!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
erhardt_dekock
Contributor III
Contributor III
‎2018-12-14 07:22 AM

REST connector PaySpace - hide credentials

Hello

We have integrated with PaySpace (Salary and employee data) using a Soap REST connector.

The data connector uses * as username and password just to have the connection setup.

The real credentials used for this connector is contained in the Body, which is in the script of the app.

We have section access setup to the app, which protects the credentials in the script.

The issue is that these credentials show in the log file once reloaded, which is then visible to all developers.

Is there a way to encrypt these credentials or hide them?

Any suggestions are welcome

Labels (1)
Labels
1,367 Views
1 Solution

Accepted Solutions
Gysbert_Wassenaar
MVP
MVP
‎2018-12-14 08:13 AM

In response to erhardt_dekock

Sorry, but that's incorrect.  If you can duplicate the app you can always open the app without data and then you can see the script.


talk is cheap, supply exceeds demand

View solution in original post

1,357 Views
0 Likes
6 Replies
Gysbert_Wassenaar
MVP
MVP
‎2018-12-14 07:42 AM

I don't understand your problem. Section Access has zero influence on who gets to see what's in the script or not. If your developers have access to the load script then they can see anything that's in the script. They won't need to see the reload logs for that. So, I don't understand what your describing. Could you explain?


talk is cheap, supply exceeds demand
1,365 Views
0 Likes
erhardt_dekock
Contributor III
Contributor III
‎2018-12-14 07:45 AM
Author

In response to Gysbert_Wassenaar

Without being included in the section access you can not see the script of an QlikSense app. The developers who are not suppose to see the script is not included in the section access. Even if they duplicate the app, they won't be able to open it.

1,362 Views
0 Likes
Gysbert_Wassenaar
MVP
MVP
‎2018-12-14 08:13 AM

In response to erhardt_dekock

Sorry, but that's incorrect.  If you can duplicate the app you can always open the app without data and then you can see the script.


talk is cheap, supply exceeds demand
1,358 Views
0 Likes
erhardt_dekock
Contributor III
Contributor III
‎2018-12-14 08:29 AM
Author

In response to Gysbert_Wassenaar
Excellent to know Gysbett, thank you.
Will have a chat to our Qlik Partner in the new year. Have removed the app from the QMC for now.
Still looking for a solution, but will create another post.
1,355 Views
0 Likes
Gysbert_Wassenaar
MVP
MVP
‎2018-12-14 10:04 AM

In response to erhardt_dekock

It's really very simple. If you don't trust your developers then don't give them access to the data. Create a separate app that loads the data, anonymizes the data and store that data in qvd files. Then let your developers create apps using only the anonymized data. When they're done developing you can take those apps away from them and load them with real data. Make sure those untrustworthy developers can't duplicate those apps.


talk is cheap, supply exceeds demand
1,351 Views
0 Likes
BogiG
Partner - Contributor
Partner - Contributor
‎2024-06-25 05:28 AM

@erhardt_dekock did you find solution for your problem?
@Gysbert_Wassenaar - Thank you for suggestion. I'm also looking for the way to hide password and username in the rest connection. When using it with "with" parameter. 
If there is a way to hide this form log and also form qvd File Metadata. I know that there is possibility to turn off linage - but not per app. So I wonder if in the scenario you propose developers can find username and password in qvd linage data. (Maybe storing data into parquet instead qvd will be solution for that).

294 Views
0 Likes