Hide building block inputs from end users
Thomas Abbe
As a platform owner, I dont't want to see end users to see the input values (provided by platform owners) of building block, since many variables are potentially sensitive (Entra ID Object identifiers, AWS Access Keys, client certificates, ...). Although it is possible to encrypt variables, this could lead to huge security issues in case of a configuration error.
However, as a platform owner, I still need to see the bb input values for debugging purposes.
F
Fabian
Hi Jelle den Burger,
regarding 1.:
this is currently the case while ordering a new building block - but not when updating. so there is a mismatch what the user sees when creating vs updating.
this is a viable option (to make it the same when creating and updating), but does not allow full flexibility for the building block owner.
regarding 2.:
this would be my preferred option. there may be instances, where the block definition owner
wants
to show a static or predefined field to the user. this option allows that.of course, it also allows to hide credentials, etc. which are set by the block definition owner and is only relevant for backend processes, not to the user.
regarding 3.:
i think users who want to get a building block should not have that much information about what is set in the background. the user is only interested in "getting the functionality", not which AWS credentials are set in the background and used for e.g. the terraform state.
it might be an option though, combined with option 2.
my opinion is not strongly held here...
regards,
fabian
Jelle den Burger
Fabian I merged your post into this one. I would be very interested to learn what your desired behavior would be. I'm currently exploring a few possible options.
- Never show inputs that the user did not enter -> In this case we just always only show the inputs that the user can influence (if any)
- Let you as a building block definition owner decide what should be and should not be visible.
- Never show anything but let the user open a small window "View all inputs".
Or maybe you also have some ideas how you'd like to decide (or not decide) what should be shown.
Jelle den Burger
Merged in a post:
Hide input fields from users
F
Fabian
When users create a building from the marketplace, they are presented with the input fields they can control.
However when updating the building block, users see
all
inputs - even those which contain credentials (though encrypted), defined by the building block owners.There should be an option to hide those inputs from the user. The user shouldn't have to know that there is an AWS_ACCESS_KEY or similiar defined, the user should just see the parameters that are applicable to him.
Jelle den Burger
Thanks a lot for your feature request. We will discuss this internally how we can make this possible - either by making this the default or by giving you the ability to control this behavior.