A password for an SqlSourceSystem was entered via SqlSourceSystem.setSecretValue(). A few days later we find that the password is not there any more, it has been removed.

  1. What are the API´s that can remove a parameter entered via setSecretValue()? We would like to check the logs to see when this happened?

  2. What other actions on the cluster would remove a parameter entered via .setSecretValue()?

  1. there are number of methods on Config type that can reset or clear the values - please refer to documentation

  2. there is a strict guideline that platform code should never change configuration directly and it is enforced via code reviews - I’m not aware of any other platform action that would remove password

I suggest we perform splunk search of count of all actions performed on SqlSourceSystem and group by a_user