Passing sensitive data as environment vars via API #3497
Unanswered
currentjeff
asked this question in
Q&A
Replies: 1 comment 3 replies
-
|
Hello @currentjeff sure. Then when triggering the build via the Builds API, instead of passing the sensitive value directly, you can include the environment group in the request: In this case, all variables from the |
Beta Was this translation helpful? Give feedback.
3 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment





Uh oh!
There was an error while loading. Please reload this page.
-
If you are looking for help, please confirm the following...
Which mobile framework are you using?
iOS (Swift, Objective-C)
Steps to reproduce
Hello, we're considering triggering builds programmatically via the Builds API and passing per-user values through environment.variables in the request body. One of these would be sensitive, and we'd want it not to be readable by anyone who can view that build.
In the
Preparing build machinestep the sensitive key shows up. It's base64 encoded but ideally it either doesn't show at all or shows similarly to other secret keys added through the UI likeIs that possible? If not, are there any workarounds for obfuscating sensitive information when using the API?
Expected results
The environement variable is masked/hidden similar to other Secrets.
Actual results
The key is unmasked and visible to anyone viewing the build.
Build id (optional)
No response
Beta Was this translation helpful? Give feedback.
All reactions