Are there any plans to obfuscate the API keys in Django Admin? #1877
Unanswered
nickdjones
asked this question in
Q&A
Replies: 1 comment 1 reply
-
Hi Nick, I'm not sure if there's any real value add in obfuscating the key when the same user can just use the shell to access it anyway. A better solution, in my opinion, would be to do obfuscation according to user role so individuals who do customer support etc may not see that potentially. With that being said one can inherit from the APIKey model and add permissions to it although that would be concrete inheritance for now. |
Beta Was this translation helpful? Give feedback.
1 reply
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hi there,
At the moment, when you open the API keys change link in Django Admin it will show you the (potentially secret) key in full. In my opinion, this should be masked, as Stripe itself doesn't even allow you to view the secret key after creation. Are there any plans to do this?
Thanks,
Nick
Beta Was this translation helpful? Give feedback.
All reactions