Dashboard

Security and privacy in the TestDriver web UI.

Tests that execute via our GitHub Action are recorded and reported via Dashcam (another application developed by TestDriver). You can find more information on the Dashcam docs.

Dashcam and TestDriver share the same API and web application back end. This web application includes the following privacy and security features:

Feature
Description

SSL

All data is transmitted over HTTPS

OAuth

Users may only authenticate via OAuth provided by Auth0

Team Management

Individual team members may be added or removed by administrators only.

Roll Based Access Control

The first user to create a team is the administrator. Administrators are the only users who can see the API key and manage team settings. Administrators can not be removed. All other users are normal members.

API Key Rotation

The team API key can be rotated. We recommend rotating your API key every 90 days.

Secret Masking

Test replay logs and network requests are parsed for secrets like credit card numbers, emails, passwords, and other keys. Found secrets are overwritten with asterisks ****

Encrypted At Rest

Test replays and logs are stored securely on Amazon S3 and encrypted at rest. Test results are are only available via temporary signed urls. Signed URLs are only generated for team users.

Last updated