Looking for ways to encrypt lookup column value. I want a column value which is supposed to be a secret key be encrypted and editable only to specific user role. Kindly suggest.
I have set an encrypted string as a system setting as shown on the picture
and for some reason I am not able to use it as a value for the parameter of my user task. It is not showing as an option to be selected. Any help would be appreciated.
By default, Business Process elements cannot process encrypted values but you can refer to this workaround that might help you with your business task.
While building process I'm trying to set parameters for "Call Web Service" element.
As a value I'm trying to insert encrypted system setting:
When I'm trying to do so - formula returns validation error:
If not possible to do with formula is there is a way to set Process parameter and update this value via script task. I'm not familiar with C#, any help appreciated.
System settings with the "Secured text" type are not being transmitted to the client (browser). This process is controlled by the "UseSecureSettingsOnClient" flag in the Web.config configuration file of the bpm'online application. Their values can still be set from the client (browser). So by default you are able to work with "encrypted string" system settings only on server side.
So, if the use of this system settings in business process is necessary you should set "UseSecureSettingsOnClient" flag to true and restart IIS.
Thanks a lot for your help, it's been for a while.
!----------
So, Is it possible to work with <Encrypted String> in script task, and FWD all data to Web Service Element?
The Case is: I would like to store token information, in order to process communication with Web Api Service, but still, I would like string to be forbidden without turning off security configuration.
With an encrypted string, am I able to limit the number of visible characters? Or is the entire string hidden from view?
Currently the text field that I have setup as an encrypted string hides the string completely. Is there a better to way to perform the function of limiting all characters (e.g. account #) to an asterisk with the exception of the last 4 digits?
As a workaround for it I can recommend you to create 2 fields instead and populate just one with the value you need. Then either with the help of the development you can transfer the last 4 digits and a set of asterisks to a different field before saving the entity, or you can use a business process for the same purpose.
