Mask private key when exporting SAML client (#1326)

src/clients/messages.ts

@@ -17,6 +17,7 @@ export default {
     encryptAssertions: "Encrypt assertions",
     clientSignature: "Client signature required",
     downloadAdaptorTitle: "Download adaptor configs",
+    privateKeyMask: "PRIVATE KEY NOT SET UP OR KNOWN",
     keys: "Keys",
     credentials: "Credentials",
     roles: "Roles",

src/components/download-dialog/DownloadDialog.tsx

@@ -51,6 +51,12 @@ export const DownloadDialog = ({
     [selected]
   );
 
+  const sanitizeSnippet = (snippet: string) =>
+    snippet.replace(
+      /(?<=<PrivateKeyPem>).*(?=<\/PrivateKeyPem>)/gs,
+      t("clients:privateKeyMask")
+    );
+
   useFetch(
     async () => {
       const snippet = await adminClient.clients.getInstallationProviders({
@@ -58,7 +64,7 @@ export const DownloadDialog = ({
         providerId: selected,
       });
       if (typeof snippet === "string") {
-        return snippet;
+        return sanitizeSnippet(snippet);
       } else {
         return prettyPrintJSON(snippet);
       }