Use Case
Passwords are stored in plain text in the client catalog cache (and I imagine other places too). I've mainly dealt with this using sensitive types and node_encrypt but the last issue is the scheduled task password, which currently doesn't support sensitive types:
Unable to mark 'password' as sensitive: password is a parameter and not a property, and cannot be automatically redacted.
Describe the Solution You Would Like
it would be very useful to have "password" support sensitive types.
Describe Alternatives You've Considered
I've tried multiple ways to redact the password/encrypt it but every option results in failure due to a lack of sensitive type support.
I've also tried using DSC, which does support sensitive types however it does have issues that need working around. Also, we use the scheduled_task module a lot and it has worked fine, so it would be easier to keep using that than porting over to DSC and finding scripting workarounds for its issues.
Additional Context
N/A
Use Case
Passwords are stored in plain text in the client catalog cache (and I imagine other places too). I've mainly dealt with this using sensitive types and node_encrypt but the last issue is the scheduled task password, which currently doesn't support sensitive types:
Unable to mark 'password' as sensitive: password is a parameter and not a property, and cannot be automatically redacted.Describe the Solution You Would Like
it would be very useful to have "password" support sensitive types.
Describe Alternatives You've Considered
I've tried multiple ways to redact the password/encrypt it but every option results in failure due to a lack of sensitive type support.
I've also tried using DSC, which does support sensitive types however it does have issues that need working around. Also, we use the scheduled_task module a lot and it has worked fine, so it would be easier to keep using that than porting over to DSC and finding scripting workarounds for its issues.
Additional Context
N/A