N8n user management: member sensitive credential data is visible to the owner

artildo · November 1, 2022, 8:06am

Hi there! When a member creates it own credentials, its content is visible for the owner.
But in the User management manual it’s said: " See all credentials (but not the sensitive information)"

I thought that credentials data is in fact the sensitive data. Can a member somhow hide it from the owner? So that the latter would see only “there’s a credential with such a name”.

Jon · November 1, 2022, 11:43am

Hey @artildo,

That is a good spot, Let me check with the rest of the team.

Jon · November 1, 2022, 3:42pm

Hey @artildo,

I have had a chat with the rest of the team and it looks like the Owner is meant to have the ability to see the credentials for other user accounts I guess to help solve problems if any pop up. It looks like this different when credential sharing is enabled that then hides the details unless the user allows the owner to have access to them.

artildo · November 2, 2022, 7:44am

Hi @Jon, thank you for pointing that out

So one usecase is when the owner is supposed to have access to his users’ creds.
But can I disable it? So that this data would become invisible to the owner.
Mabe some settings in the yml file?

Jon · November 2, 2022, 1:07pm

Hey @artildo,

When credential sharing is not enabled it looks like it will work how it currently does and there is no way at the moment to change this we will need to pop open a feature request to have an option added.

artildo · November 2, 2022, 1:25pm

@Jon,

So if I got you correctly, right now there is no way to hide members cred, but it can be enabled in future?

Jon · November 2, 2022, 1:27pm

Hey @artildo,

That is my understanding, So right now you can’t hide them but when credential sharing is released and enabled that will then hide the credentials from the owner unless shared with them.

rubenalonsoes · February 4, 2024, 10:59am

Hi! I was looking about this topic. Is possible nowadays hide the members credentials to the owner?
Thanks in advance

Jon · February 5, 2024, 4:45pm

Hey @rubenalonsoes,

Welcome to the community

Good question, I think the values are hidden but as the owner is typically the server admin they will have access to everything from the cli anyway.

rubenalonsoes · February 5, 2024, 5:09pm

Yes, but as owner I could create a workflow using that credential?

Jon · February 6, 2024, 12:11pm

Technically… yes you could but not by selecting it from the UI in the node. We recommend using the owner account as more of a super admin account and lock it away so that no one uses it.

rubenalonsoes · February 6, 2024, 12:28pm

Ok, thanks Jon!

artildo · March 2, 2024, 7:42am

Thanks for fixing. Now the creds are hidden to the owner.