Sometimes administrators or users wants to know a SecHub configuration for a job. For example to check which kind of scans were configured, which files were excluded etc. But currently there is no dedicated way to handle this.
:information_source: This is a sub issue of #3250
Wanted
Users and administrators shall be able to fetch a SecHub configuration for a created SecHub job.
But sensitive data shall be masked.
Solution
introduce new REST endpoint at scheduler domain
access only for administrators and users of the project
sensitive data (DAST login and remote data section credentials) must be masked.
Situation
Sometimes administrators or users wants to know a SecHub configuration for a job. For example to check which kind of scans were configured, which files were excluded etc. But currently there is no dedicated way to handle this.
:information_source: This is a sub issue of #3250
Wanted
Users and administrators shall be able to fetch a SecHub configuration for a created SecHub job. But sensitive data shall be masked.
Solution