From 46f658338246e8d07e3876d86264037981eb1ad7 Mon Sep 17 00:00:00 2001
From: Jahnvi Thakkar <jathakkar@microsoft.com>
Date: Wed, 10 Dec 2025 16:56:57 +0530
Subject: [PATCH] FIX: Connection String Param for Authentication

---
 mssql_python/auth.py   | 3 +--
 tests/test_008_auth.py | 6 ++++--
 2 files changed, 5 insertions(+), 4 deletions(-)

diff --git a/mssql_python/auth.py b/mssql_python/auth.py
index fb678a3d..33607f00 100644
--- a/mssql_python/auth.py
+++ b/mssql_python/auth.py
@@ -165,8 +165,7 @@ def remove_sensitive_params(parameters: List[str]) -> List[str]:
     exclude_keys = [
         "uid=",
         "pwd=",
-        "encrypt=",
-        "trustservercertificate=",
+        "trusted_connection=",
         "authentication=",
     ]
     result = [
diff --git a/tests/test_008_auth.py b/tests/test_008_auth.py
index 9b8fff4e..0c0716cb 100644
--- a/tests/test_008_auth.py
+++ b/tests/test_008_auth.py
@@ -309,6 +309,7 @@ def test_remove_sensitive_parameters(self):
             "Encrypt=yes",
             "TrustServerCertificate=yes",
             "Authentication=ActiveDirectoryDefault",
+            "Trusted_Connection=yes",
             "Database=testdb",
         ]
         filtered_params = remove_sensitive_params(params)
@@ -316,8 +317,9 @@ def test_remove_sensitive_parameters(self):
         assert "Database=testdb" in filtered_params
         assert "UID=user" not in filtered_params
         assert "PWD=password" not in filtered_params
-        assert "Encrypt=yes" not in filtered_params
-        assert "TrustServerCertificate=yes" not in filtered_params
+        assert "Encrypt=yes" in filtered_params
+        assert "TrustServerCertificate=yes" in filtered_params
+        assert "Trusted_Connection=yes" not in filtered_params
         assert "Authentication=ActiveDirectoryDefault" not in filtered_params