AnsweredAssumed Answered

How to hide properties values to end-users?

Question asked by cperez on Sep 17, 2014
Latest reply on Sep 20, 2014 by kaynezhang
Hi all

I try to get the alf_ticket using ajax within a ftl page using the username and the password in properties file, but my page show the login and password if in my browser I select "inspect element" or if I use firebug.

My nodeAct.get.html.ftl file is :

      <script src=""></script>
      <script type="text/javascript"> = true;
         var urlTicket = "${url.serviceContext}/api/login?u=" +${un}" "&pw=" +${up};
         var ticket = "";
         var request = $.get(urlTicket, function(data,status){
            ticket = data.toString().substring(48,95);
            //window.location.href = "${url.serviceContext}/doAct?nId=${nId}${arguments}&alf_ticket="+ticket;
         request.error(function(jqXHR, textStatus) {
            if (textStatus == 'error'){
               status.code = 403;
               status.message = "User not found.";
               status.redirect = true;
      <title>Show file</title>


and my file is:


What can I do to hide the user and the password to users??

Thanks a lot in advance