Problem
psa domain list --json and psa domain status --json include raw config content that contains encrypted passwords (e.g. from psappsrv.cfg, psprcs.cfg). While encrypted, exposing them in CLI output is a security concern.
Scope
config_files[].content in JSON output contains full raw configconfig dict may contain password-adjacent fields
Decision Needed
- Redact: Replace password values with
*** (preserves structure)
- Strip: Remove password fields entirely from output
- Which fields to target (ConnectPswd, OprPswd, etc.)
Found During
Demo lab walkthrough testing (F4).
Problem
psa domain list --jsonandpsa domain status --jsoninclude raw config content that contains encrypted passwords (e.g. from psappsrv.cfg, psprcs.cfg). While encrypted, exposing them in CLI output is a security concern.Scope
config_files[].contentin JSON output contains full raw configconfigdict may contain password-adjacent fieldsDecision Needed
***(preserves structure)Found During
Demo lab walkthrough testing (F4).