Open znicholasbrown opened 2 years ago
@znicholasbrown I don't think this is a ui issue. The schema from the api is what's causing this to be treated like a password.
{
"type": "string",
"title": "Webhook URL",
"format": "password",
"example": "https://your-org.webhook.office.com/webhookb2/XXX/IncomingWebhook/YYY/ZZZ",
"writeOnly": true,
"description": "The Teams incoming webhook URL used to send notifications."
}
Webhook URLs are secret though right? Isn't the issue here that it's being displayed below?
@znicholasbrown @pleek91 the screenshot for the issue is made on create notification page, that's why we can see the hook I assume, so we can validate one last time it is correct. On the general notifications dashboard, it's starred. I just want to confirm we want it hidden on create notification page as well
Also, when we go back to edit, it is starred as well. So the only time you see it, is when creating notification
I think the issue here is that the field probably doesn't need to be obfuscated as a user types since that makes it difficult to identify and correct mistakes; I think it's ok if the final value is obfuscated when being displayed but not the input one. As @pleek91 mentioned though, I don't think this is a UI issue per se, unless we want to make a blanket rule that password input types are visible when interacting with the input field and obfuscated otherwise. Either way I think this is low priority
First check
Bug summary
The webhook input uses
type="password"
to obfuscate the value, despite it being visible just belowReproduction
Create a new MS Teams webhook notification
Error
Browers
Prefect version
Additional context
N/A