apache/airflow

Sensitive data from extra fields is visible in Edit Connection window

Open

#53,410 建立於 2025年7月16日

在 GitHub 查看
 (9 留言) (0 反應) (0 負責人)Python (44,809 star) (16,781 fork)batch import
area:UIarea:coregood first issuekind:feature

描述

Apache Airflow version

3.0.3

If "Other Airflow 2 version" selected, which one?

No response

What happened?

After upgrading Airflow from version 3.0.2 to 3.0.3 sensitive data in extra fields and extra fields JSON is visible in edit connection page.

What you think should happen instead?

Sensitive data should be masked with ***

How to reproduce

Enter Edit Connection window in Airflow UI.

Operating System

Ubuntu 24.04

Versions of Apache Airflow Providers

No response

Deployment

Other Docker-based deployment

Deployment details

Airflow deployed with Docker Swarm. Settings in airflow.cfg:

  • hide_sensitive_var_conn_fields = True

I also added the following after realising the issue occurred::

  • sensitive_var_conn_names = private_key,private_key_passphrase However, this did not change anything.

Anything else?

No response

Are you willing to submit PR?

  • Yes I am willing to submit a PR!

Code of Conduct

貢獻者指南

技術棧
pythonreactjavascript
領域
frontendbackend
議題類型
bug
難度面向新貢獻者的預計實作難度,1 表示很小改動,5 表示專家級工作。
3
預計時間有經驗貢獻者完成調查、實作、測試並準備 pull request 的粗略時間範圍。
1-2 days
活動狀態議題目前的可參與程度:新鮮、活躍、陳舊、阻塞或等待維護者輸入。
active
清晰度議題是否清楚說明預期改動、驗收標準和下一步。
mostly clear
前置要求
basic knowledge of AirflowReact component debugging
新手友善度1-100 的估計分數,表示該議題對首次貢獻者的友善程度。
45
研究方向
Investigate the UI masking logic for connection extra fields, which previously worked in 3.0.2. Look at the recent changes in the ConnectionEdit component (likely in airflow/ui/) and the backend serialization of extra fields. Check for any related tests or maintainer comments in the issue.
Sensitive data from extra fields is visible in Edit Connection window · apache/airflow#53410 | Good First Issue