I can't find anything in the documentation about how how FME Server stores published parameters in scheduled jobs.
Are published parameters that are passwords encrypted? Or does FME server store these parameters as clear text behind the password dots?
See the screenshot below that shows exactly what I'm talking about:
Best answer by david_r
The password is stored encrypted in the FME Server database (table public.fme_parameter), e.x.
fme_decrypt(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)I have no idea how secure it is since the algorithm used isn't public knowledge.
If you need better security I highly recommend you look into named database connections rather than using parameters:
The password is stored encrypted in the FME Server database (table public.fme_parameter), e.x.
fme_decrypt(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)I have no idea how secure it is since the algorithm used isn't public knowledge.
If you need better security I highly recommend you look into named database connections rather than using parameters:
You can also look at using a shell script to pass in passwords and that way it is not hardcoded into the workspace. We used this method with FME Server 2014 ok.
