Effectively if we cannot encrypt the AppSettings of our web.config this product is not viable for use with our production systems or any system holding confidential data. It is a supported feature within other APM systems (Dynatrace / New Relic) and is currently the only thing holding us back from making arrangements to migrate our production from New Relic.
This feature should allow for the following:
Encryption of the Retrace attribute / value in the appSettings portion of the web.config
Decryption as well
Potentially storing the values somewhere other than the web.config which support has told is also not available at this time.
Our new .NET profiler (currently in Beta) will address this issue by storing the Retrace settings in the Stackify.json file instead of the web.config.
We anticipate the .NET profiler to ship in early Q3.
This is a deal breaker with our Security group, the web.config must be encrypted to meet the CIS standards for security for any system that contains PHI or PII.