anavrotski opened a new issue, #60668: URL: https://github.com/apache/airflow/issues/60668
### Apache Airflow version 3.1.6 ### If "Other Airflow 3 version" selected, which one? 3.1.0 ### What happened? When the enivronment variable [AIRFLOW__API__EXPOSE_CONFIG](https://airflow.apache.org/docs/apache-airflow/stable/configurations-ref.html#expose-config) is set to `non-sensitive-only` some secrets are visible in menu _Admin / Config_: ``` Section Key Value core simple_auth_manager_users admin:admin <- USER:PASSWORD core sql_alchemy_conn mysql+mysqldb://DB_USER:[email protected]:3306/airflow_db kubernetes_environment_variables client_id some_uuid <- probably shouldn't be exposed kubernetes_environment_variables client_secret some_secret <- probably shouldn't be exposed ``` ### What you think should happen instead? Values from above should not be visible. ### How to reproduce Set AIRFLOW__API__EXPOSE_CONFIG env var to 'non-sensitive-only'. ### Operating System linux ### Versions of Apache Airflow Providers _No response_ ### Deployment Official Apache Airflow Helm Chart ### Deployment details Chart 1.18 ### Anything else? _No response_ ### Are you willing to submit PR? - [ ] Yes I am willing to submit a PR! ### Code of Conduct - [x] I agree to follow this project's [Code of Conduct](https://github.com/apache/airflow/blob/main/CODE_OF_CONDUCT.md) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
