System.Windows.Controls.PasswordBox - Clear Text password written to TestComplete log.
Hi, I am currently reviewing automation code for a WPF application. The WPF application has a login dialog box which contains System.Windows.Controls.PasswordBox as a password input box. The automation code is calling the SetText method to populate the control with password value. Unfortunately, this is resulting in the clear text password value being logged into the TestComplete log. The log record appears as following:
The text '<ClearTextPasswordValueSeenHere>' was entered in the text editor.
We are running this in an Azure pipeline and causing a serious problem for us as a wider set of users have access to the log. This is a security concern. Is there a way we can mask the password in the log? The log itself is absolutely essential for troubleshooting, especially when it is running in an Azure Pipeline. So disabling log is not a solution.
Try to searh for "PrjVar" in your Azure log, this might reveal the command line used to execute your tests.
If you can't find anything, then great!
Have you read through, https://learn.microsoft.com/en-us/azure/devops/pipelines/process/set-secret-variables?view=azure-devops&tabs=yaml%2Cbash ?