Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Join us at Qlik Connect for 3 magical days of learning, networking,and inspiration! REGISTER TODAY and save!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
klekovkinda
Partner - Contributor III
Partner - Contributor III
‎2023-01-09 08:24 AM

Security issue with creating the AmazonS3 Data Connection via QRS API

When I create the Amazon S3 bucket connection via the user interface. Access key and Secret key are hidden: 
Connection string looks like:

CUSTOM CONNECT TO "provider=QvWebStorageProviderConnectorPackage.exe;sourceType=File_AmazonS3Connector;region=<REGION>;bucketName=<BUCKET_NAME>;"

But if I'm using the qrs api And provide the access key and secret key In the connection string, they are visible in the configuration in human readable format, and available for anyone who has an access to the QMC, data connection settings. 
This is a body I send:

{
    "name": "AWS S3",
    "owner": {
        "name": "<USER>"
    },
    "connectionString": "CUSTOM CONNECT TO \"provider=QvWebStorageProviderConnectorPackage.exe;sourceType=File_AmazonS3Connector;region=<REGION>;bucketName=<BUCKET_NAME>;accessKey=<ACCESS_KEY>;secretKey=<SECRET_KEY>\"",
    "type": "QvWebStorageProviderConnectorPackage.exe",
    "username": "",
    "logOn": 0,
    "architecture": 0,
    "tags": [],
    "customProperties": [],
    "privileges": null,
    "schemaPath": null
}

This request created the data connection, data connection works as expected. But when I open the configuration I see:
Screenshot 2023-01-09 at 14.17.01.png

Is there any way to create the Amazon S3 connection wia qrs API, so that the access key and secret will be not displayed in configuration? 

Labels (2)
Labels
574 Views
0 Likes
1 Reply
J_Lindberg
Support
Support
‎2023-03-08 09:37 AM

Hello @klekovkinda 

I think this question has ended up in the wrong forum? In this forum we're able to help you with Qlik Application Automation related questions. Qlik Application Automation provides a no-code visual interface that helps you easily build automated analytics and data workflows. We do have a Amazon S3 connector in automations, but this doesn't seem to be used here. 
It would be great if you could post this question in the forum related to the product you are using and you will get help there.

432 Views
0 Likes