- 3 minutes to read

ProtectedContextValues - System Parameter

Tip

With Nodinite, you can protect sensitive data such as passwords and secrets. Nodinite encrypts and can mask Context Properties in all Nodinite Log Events, providing a level of security that surpasses BizTalk Server's capabilities.

Nodinite has secure storage of Context Properties.
 Rest assured, Nodinite has your back. With robust support to mask the value from Context Properties, it ensures your data remains secure. Nodinite simplifies data management, making it easy to get data from either Log Agents (usually plug-and-play) or Custom Logging, potentially using the Nodinite Log API.

With Nodinite, you have the power to mask a value for a named Context property. You can configure the 'ProtectedContextValuesSystem Parameter. This parameter allows you to specify which Context Properties should be protected and how they should be masked.

graph LR subgraph "Nodinite" roNodinite(fal:fa-user-secret Protect Context Properties) end subgraph "Log Events" ro1(fal:fa-globe HTTP Headers) ro2(BizTalk Context Properties) ro3(MuleSoft Business Events) ro4(Azure Logic Apps Tracked Properties) ro5(...) end roNodinite -.- ro1 roNodinite -.- ro2 roNodinite -.- ro3 roNodinite -.- ro4 roNodinite -.- ro5

The diagram shows examples of different Context Property sources with data you may want to mask.

Warning

Unlike Microsoft BizTalk Server, where Context Properties are stored in clear text and are perfectly readable without any traces, even for SQL DBAs, Nodinite provides a higher level of security. It protects the Context values in the Nodinite Log Databases and can mask the output.

The Web Client provides self-service access to logged data for your Users with Role-based security to Log Views. An administrator may have given Users the right to view Context Data, including passwords for FTPs. Hence, when using 'Dynamic Send Ports' in BizTalk Server, you should mask these values to ensure data security.

Tip

In addition to the 'ProtectedContextValues' System Parameter, you can use Stylesheets to mask the data in a payload (i.e. from XML, JSON, and flat files). Stylesheets allow you to define rules for how data should be presented, including masking sensitive information.

How do I hide a file name?

Using the example below masks the file name for data in BizTalk Server.

[
    {
        "Key": "http://schemas.microsoft.com/BizTalk/2003/file-properties#ReceivedFileName",
        "DisplayValue": "*** hidden filename ***"
    }
]

Here's an example of hiding the file name in data from BizTalk Server.

Repeat the entries as needed to hide additional context values;

How do I mask multiple Tracked Properties?

In the example below, you are hiding multiple Context Properties.

[
    {
        "Key": "http://schemas.microsoft.com/BizTalk/2003/file-properties#ReceivedFileName",
        "DisplayValue": "*** hidden filename ***"
    },
    {
        "Key": "MySchema#Password",
        "DisplayValue": "******** [password is hidden]"
    },
    {
        "Key": "MySchema#SecureValue",
        "DisplayValue": "•••••••••"
    }
]

Here's an example with multiple entries.

Info

This feature comes with Nodinite version 4.3.0.24

Frequently asked questions

Additional solutions to common problems and the Nodinite System Parameters FAQ exist in the Troubleshooting user guide.

Next Step

Administration
System Parameters