On 11/5/21 10:43, Stephen Booth via curl-library wrote:
If I use basic-auth the curl binary hides the credentials passed on
the command line from being seen using ps -1
Whats the best way of protecting bearer tokens in the same way?
AFAIK the only way of setting a bearer token is to use the generic -H
flag
You should use the --oauth2-bearer option. Unfortunately it does not
(yet) obfuscate its argument. A PR for it is pending:
https://github.com/curl/curl/pull/7964
Patrick
--
Unsubscribe: https://lists.haxx.se/listinfo/curl-library
Etiquette: https://curl.haxx.se/mail/etiquette.html
