fix(core): Redact csrfSecret when returning oauth credentials to the frontend (#10075)

2025-12-18 02:21:13 +00:00 · 2024-07-16 18:09:56 +02:00
parent 68d5d7e2e9
commit 48f047ee2e
2 changed files with 71 additions and 1 deletions
--- a/packages/cli/src/credentials/credentials.service.ts
+++ b/packages/cli/src/credentials/credentials.service.ts
@@ -407,7 +407,7 @@ export class CredentialsService {

 		for (const dataKey of Object.keys(copiedData)) {
 			// The frontend only cares that this value isn't falsy.
-			if (dataKey === 'oauthTokenData') {
+			if (dataKey === 'oauthTokenData' || dataKey === 'csrfSecret') {
 				if (copiedData[dataKey].toString().length > 0) {
 					copiedData[dataKey] = CREDENTIAL_BLANKING_VALUE;
 				} else {