Uploaded image for project: 'Compass '
  1. Compass
  2. COMPASS-5239

Ensure connectionModel.secrets are encrypted

    XMLWordPrintableJSON

Details

    • Icon: Task Task
    • Resolution: Fixed
    • Icon: Major - P3 Major - P3
    • 1.31.0
    • None
    • None
    • None
    • 1
    • Not Needed
    • Iteration Phnom Penh, Iteration Q, Iteration Reno, Iteration Seoul, Iteration Utica, Iteration Versailles

    Description

      Follow up from COMPASS-4630, we just need to check that secrets are not stored in clear, tests in COMPASS-4630 only use a mock `storage-mixin` and we need to integrate ConnectionStorage before we are able to check that the encryption really takes place.

      We need to verify that in the connection files saved by ConnectionStorage (packages/data-service) there is no secrets section or secrets saved in clear (see https://github.com/mongodb-js/compass/blob/main/packages/data-service/src/connection-secrets.ts).

      Also we need to verify that the secrets are stored in the keychain instead.

      Attachments

        Activity

          People

            basit.chonka@mongodb.com Basit Chonka
            maurizio.casimirri@mongodb.com Maurizio Casimirri
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: