Forum Discussion
bram_11546
Nimbostratus
Apr 10, 2012password security in an iApp
In iApps you can include password fields which is nice.
These passwords are retained when you reconfigure the app, which is even nicer.
But how are they protected ?
Are they a...
Brent_Blood_768
Apr 11, 2012Historic F5 Account
Hello Bram,
Unfortunately, the values provided for "password" fields in iApps are not encrypted (or even obfuscated) as they are stored on disk. The UI hides it when you are viewing the template, but that's as far as it goes. You can see this for yourself via tmsh by running:
list sys application service myservice.app/myservice
Substitute both instances of "myservice" in that command with the name you chose for the iApp service when you completed the form. That command will show you the configuration for the application, including its variables which will contain the plaintext of the password.
If this is an issue for you, I would encourage you to open a support case and ask for a Request for Enhancement (RFE) stating your expectations and desires.
Cheers,
-Brent
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects