Hide credetial password

I would like to give other users access to n8n so they can create and update workflows. However I have a problem giving them access if they can just read out passwords from all connected systems.

As long as there is no user management / password store implemented as proposed in the request it would be good if we could have a flag to hide (***) passwords in the credential manager. This way users can use the system but are not able to read the credentials for other systems.

Hey @jwillmer,

Unfortunately, hiding a password behind *** is very easy to bypass. I think a better way of dealing with the whole password issue is to set up a form of two-factor authentication (2FA) so that users can still use the credentials but managers with the 2FA token/kep/app can manage the passwords.

It is not easy to bypass if the server returns ***** instead of the password.


Unfortunately, the *** masking is usually done by the web browser and trivial to bypass. But, I think that n8n can learn from these things.