Dashboard
Security and privacy in the TestDriver web UI.
Tests that execute via our GitHub Action are recorded and reported via Dashcam (another application developed by TestDriver). You can find more information on the Dashcam docs.
Dashcam and TestDriver share the same API and web application back end. This web application includes the following privacy and security features:
| Feature | Description |
|---|---|
SSL | All data is transmitted over HTTPS |
OAuth | Users may only authenticate via OAuth provided by Auth0 |
Team Management | Individual team members may be added or removed by administrators only. |
Roll Based Access Control | The first user to create a team is the administrator. Administrators are the only users who can see the API key and manage team settings. Administrators can not be removed. All other users are normal members. |
API Key Rotation | The team API key can be rotated. We recommend rotating your API key every 90 days. |
Secret Masking | Test replay logs and network requests are parsed for secrets like credit card numbers, emails, passwords, and other keys. Found secrets are overwritten with asterisks |
Encrypted At Rest | Test replays and logs are stored securely on Amazon S3 and encrypted at rest. Test results are are only available via temporary signed urls. Signed URLs are only generated for team users. |
Last updated