--removekeywords flag doesn't remove data from the logs if the keyword fails

cfarsoudi · 6 October 2021 23:24

Hello,

We are trying to solve a problem where we want to remove sensitive data, like user credentials, from the log file. We know the right answer is to have test accounts used for this purpose, but thats not an option for us.

We were able to solve this issue with the --removekeywords flag, although it fails to remove data from the log if the keyword fails. It’s a little interesting because if use “–removekeywords all”, all keyword data gets removed including failures. But when we use “–removekeywords name:*” and a keyword fails, we can see all of its data and calls to other keywords.

Is there any way to prevent Robot from writing keyword data to the log on failures?

robinmackaij · 7 October 2021 08:10

Perhaps this library could be of use:
Snooz82/robotframework-crypto: Robot Framework Library to securely handle credentials. (github.com)

Instead of cleaning afterwards, prevent the sensitive data from being logged plain-text.

cfarsoudi · 11 October 2021 21:04

Thanks @robinmackaij!

This is a pretty nifty solution, but do you know if there’s a way for it to be run from inside a Python module? I used Builtin().run_keyword(“Get Decrypted Text”, encrypted_string) which was able to decrypt the password, but then it doesn’t get starred out (***) in the logs.

Topic		Replies	Views
Secret Handling using Robot Robot Framework	5	7309	4 April 2023
Collapsing all Suites/Tests within the log file regardless of Pass/Fail Robot Framework	2	477	22 February 2024
Log level in robot:flatten Robot Framework	5	1182	12 October 2023
Is there any way to hide the implementation of custom keywords from user in robot framework Robot Framework	5	1155	6 February 2023
BuiltIn run_keyword and argument logging Libraries	0	297	2 June 2023

--removekeywords flag doesn't remove data from the logs if the keyword fails

Related topics