Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(core): Return unredacted credentials from GET credentials/:id #12447

Merged
merged 1 commit into from
Jan 7, 2025
Merged

fix(core): Return unredacted credentials from GET credentials/:id #12447

merged 1 commit into from
Jan 7, 2025

Conversation

despairblue
Copy link
Contributor

Summary

Don't redact secrets in credentials for GET /credentials/:id. The FE will send back all of the data on PATCH /credentials/:id, so if we redact on GET we end up saving the redacted value to the DB on PATCH.

Long term fix should be to identify the redacted values and don't updated them in the db. E.g. only update passwords if the user inserted a new one. In general secrets should not be send back to the FE at all to prevent accidentally leaking them. But that's goal for another PR.

Related Linear tickets, Github issues, and Community forum posts

https://linear.app/n8n/issue/PAY-2424/not-possible-to-reconnect-google-credentials

Review / Merge checklist

  • PR title and summary are descriptive. (conventions)
  • Docs updated or follow-up ticket created.
  • Tests included.
  • PR Labeled with release/backport (if the PR is an urgent fix that needs to be backported)

@n8n-assistant n8n-assistant bot added core Enhancement outside /nodes-base and /editor-ui n8n team Authored by the n8n team labels Jan 3, 2025
@codecov Codecov
Copy link

codecov bot commented Jan 3, 2025

Codecov Report

All modified and coverable lines are covered by tests ✅

📢 Thoughts on this report? Let us know!

@despairblue despairblue marked this pull request as ready for review January 3, 2025 15:25
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Jan 7, 2025

✅ All Cypress E2E specs passed

@cypress Cypress
Copy link

cypress bot commented Jan 7, 2025

n8n    Run #8600

Run Properties:  status check passed Passed #8600  •  git commit 3535bbf364: 🌳 🖥️ browsers:node18.12.0-chrome107 🤖 despairblue 🗃️ e2e/*
Project n8n
Branch Review pay-2424-not-possible-to-reconnect-google-credentials
Run status status check passed Passed #8600
Run duration 04m 46s
Commit git commit 3535bbf364: 🌳 🖥️ browsers:node18.12.0-chrome107 🤖 despairblue 🗃️ e2e/*
Committer Danny Martini
View all properties for this run ↗︎
Test results
Tests that failed  Failures 0
Tests that were flaky  Flaky 1
Tests that did not run due to a developer annotating a test with .skip  Pending 0
Tests that did not run due to a failure in a mocha hook  Skipped 0
Tests that passed  Passing 484
View all changes introduced in this branch ↗︎

@despairblue despairblue merged commit ecabe34 into master Jan 7, 2025
37 checks passed
@despairblue despairblue deleted the pay-2424-not-possible-to-reconnect-google-credentials branch January 7, 2025 10:17
@github-actions github-actions bot mentioned this pull request Jan 8, 2025
Merged
@janober
Copy link
Member

janober commented Jan 9, 2025

Got released with n8n@1.74.0

riascho pushed a commit that referenced this pull request Jan 14, 2025
@despairblue @riascho
fix(core): Return unredacted credentials from GET credentials/:id (#…
c33e17b 
…12447)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tomi tomi tomi approved these changes

Assignees
No one assigned
Labels
core Enhancement outside /nodes-base and /editor-ui n8n team Authored by the n8n team Released
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@despairblue @janober @tomi