Forum Discussion
- ArieAltostratus
Although it's technically possible to mask the credit card numbers for certain users (or, preferably, not mask them for certain users), it would be tricky at best.
Furthermore, since you're dealing with credit card information you're required to comply with the PCI-DSS (standards set by the Payment Card Industry - applies to anyone dealing with credit card data).
If the application is already showing the card numbers to everyone and it cannot be configured to show the card numbers for only certain users, my guess is that the application itself violates the PCI-DSS. If that's true you have much bigger problems than trying to hide the numbers in certain situations...
- M_4Nimbostratus
If the app is APM protected, this is really easy. 🙂
Use the CCN scrubber code (https://devcentral.f5.com/articles/irule-ccn-scrubber) and just add a user check around the masking portion.
if { [ACCESS::session data get "session.logon.last.username"] ne "username to allow cc access" } { mask CCN }