Quick answer: If you just want to see what the password is in plain text, do as Ben suggested and cast to a text data item. Be aware that a practice like this should generally only be done in a Development environment and should never be in any solution that is to go to Production unless there is a specific reason for it. I can't think of any reason why that would be a good idea though.
I'll explain more below because this is something I looked into a while back to understand it better.
I can see where this could be confusing. What's happening here is that you're using two features that aren't meant to be used together.
The Internal Business Object 'Credentials' usually accompanies the use of Credential Manager (System tab). The actions 'Generate and Set' as well as 'Generate Password' will generate a random password and give you an output that is of the Data Type 'Password'. Now, I don't really understand how the data is stored in memory while there is data in that password data item. But I can show you the difference between this and encryption.
I put the word 'test' into the initial value of a data item that is set to Data Type 'Password'. Then I selected the data item in Blue Prism, hit CTRL+C to copy it, and then I pasted it into Notepad. The value displayed where the initial password was came out to this:
53,16,7,68
I did the same thing again but this time I put 'testtest' into the initial value. Here's what it comes out to:
53,16,7,68,25,81,7,17
So, it's encrypted in some fashion and the number of values directly relates to the number of characters in the password, but I have no idea what this kind of encryption is called. It is not, however, related to any Encryption Scheme saved in Blue Prism. That wouldn't make sense anyway, since usually the Encryption key is stored on the app server and I don't think casting from a password data item to a text data item needs to contact the app server for this.
Anyway, so, now if I put the word 'test' into the input of 'Encrypt Password' in the 'Encryption' Internal Business Object, here's what I comes out to for me in one of my test environments:
8e2adWZ/Gs5zz1iDhc1zug==:2N4SnJnVDkuB55Lh90979A==
This is a text data item because it is already encrypted. It would be pointless for it also to be a password data type, I guess.
So, if you generate a password using the Credentials object, you cannot get that password using Decrypt Password. If you could somehow retrieve an encrypted password from the database, then I imagine using Decrypt Password with the right Encryption Scheme would decrypt the password. But that sounds like a compliance issue. =)
I've typed a lot so I'll just stop now. You probably weren't asking for this much info anyway. If you have more questions, I have more text I can type.
😃
Dave Morris, 3Ci at Southern Company