How to pass in a parameter to DB connection string

Question

&nbsp;var Qry = ADO.CreateADOCommand()&nbsp; &nbsp; Qry.ConnectionString = "Provider=PROVIDERDB;Data Source=SOURCEADDRESS;Initial Catalog=MYDBNAME;User ID=USERID;Password="+ProjectSuite.Variables.sqlReadOnlyPWDINT+";";&nbsp; &nbsp; Qry.CommandText = Query;&nbsp; &nbsp; Qry.commandType = cmdText;&nbsp; &nbsp; var RecordSet = Qry.Execute();&nbsp; &nbsp; return RecordSet;&nbsp;This structure is not working for me . I am not able to get the sqlReadOnlyPWDINT passed down to connection string unless its stored as string instead of password.&nbsp;Either I need to hardcode it in my script or store it as variable of&nbsp;SRTING&nbsp; type for this connection string to work. Neither of them will satisfy my risk team. Any solution to this problem?

rraghvani · Answer

Only the SetText and Keys methods can properly access the values of Password variables. Other methods get a special variable moniker and the path to the variable instead of the variable value itself.
Some possible workarounds, see https://support.smartbear.com/testcomplete/docs/reference/program-objects/builtin/inputbox.html or https://support.smartbear.com/testcomplete/docs/testing-with/advanced/user-forms/entering-passwords.html .
Depending on your db connection string, it might not be necessary to provide a username and password. Within my scripts, I access SQL Server DB using the following connection string,
"Provider=MSOLEDBSQL19.1; Integrated Security=SSPI; Persist Security Info=False; Initial Catalog=rsg_ALT_TestDataMaster; Data Source=E22-BE-SQLAL01D; Use Encryption for Data=False;"

which uses Windows Authentication i.e. trusted connection.

hassan_ballan · Answer

As rraghvani pointed out and due to security constraints, prompting user for credentials is not a good solution for CI/CD. Depending on your dbms technology you will need to use a different authentication method other than user credentials. Ask your developers how do they connect, I am sure they are not storing credentials in the project.

hanila · Answer

Thank you RRaghavani and Hassan.I will surely keep this in my learning record. In our structure, the user with access to the tool and the pipeline has no 365 account, which means I cant use the above structure.&nbsp;Customer care team gave me the solution to Decrypt at the end of calling parameter.&nbsp; &nbsp; Parameter.DecryptValue. This way I can store the details in password format and retrieve it as required for the connection string.&nbsp;Do you guys have any suggestions on this approach ?&nbsp;&nbsp;

rraghvani · Answer

A while back, I provided a possible solution, see &nbsp;Encrypt/Decrypt Base64 string in TestComplete | SmartBear Community - I didn't have dotNet extension installed or the appropriate license, so I was unable to provide the full code. However, the snippet of code was able to help. You could implement something similar.
If the automation scripts is being used by a team, would it not be best to have a dedicated user account to access the database?

Forum Discussion

How to pass in a parameter to DB connection string

4 Replies

Recent Discussions

test results for a test case with a count greater than 1 in an Azure pipeline

ID based login only works as admin

I can't map objects of type UIAObject

Related Content

Accessing database connection string from groovy test step

[Resolved] Pass empty string to query parameter

Case Insensitive String parameter in schema of openApi