I created A Katalon API/Web Services project and needed to encode a security “Key”. I created a test object and under the “HTTP Header” added the Name/Value combination for the attributes. The Value was hard coded. I then ran the code and it produced the expected results.
I then created a Test Case calling the Object and a Test Suite that runs everything. And again, everything ran fine.
Now, I used the Katalon Help>Encrypt Text to encode the “Key”. I added this information to a Global Variable under Profiles>Default. When I went to the object and under “Variables” created a variagle for the “Key”, Katalon found the global variable. When I ran the Test Suite, it failed. I think it saw the encoded variable as a raw string.
So, how do I get the object to recognize the variable as an encoded string?
@em817m , I apologize for writing in your topic w/o having any solution. I’m just wondering is it the right aproach to have an encripted security key stored in Katalon Project? Whatever is encrypted can de decripted. Woudn’t it be safer to store a security key in some environment variable?
But wouldn’t a Windows “Environment Variable” be non-encrypted? And if I would store the security key as an encrypted variable, I would still need to unencrypt it in Katalon - right? And that’s what I’m having a problem with.
Thanks, @bionel . Sounds like a plan (the only little devil in the details is how, the hell, to do it))
To be precise, how exactly to store sensitive data both locally and, for example, in the (external) Jenkins and to be able to pass them (the word ‘data’ is plural) at runtime to Katalon while running either locally or, for example, in the (external) Jenkins?
this is a matter of trust. you can store them in jenkins vault as global credentials, provided you trust all jenkins user, or under a protected group.
we are not here to perform security scanning on your infrastructure, we only advise
for the rest, read the relevant docs