potiuk commented on PR #52403: URL: https://github.com/apache/airflow/pull/52403#issuecomment-3134146340
> CLI is a very different security model to an API, so I don't think that is relevant here. > Regardless, there are better ways we can let the connection be edited without exposing the password (think a PATCH request to only update edited fields etc.) Sure. This is a new feature that we might think of adding to make it "safer" but it has **always** been like that (at least for editing not for viewing). Note that if we do it - we also have to do it for all the other sensitive fields passed in JSON extra - a number of connections have sensitive fields - such as private keys so would have to implement incremental patching of the JSON extras if we want to implement such model. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
