Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-30532

rebuild shuld not store last used password non-stored

    Details

    • Similar Issues:

      Description

      It's very bad that non-stored password parameters are stored for future rebuild. That's not what user expect - i.e. non-stored password should not be stored anywhere no matter what. This is to have some basic password security.

        Attachments

          Activity

          Hide
          tuukkamustonen Tuukka Mustonen added a comment -

          Justed bumped into this (on 1.25) and it's a huge security hole that should be patched asap.

          As a workaround, I ended up disabling rebuilding from those jobs that ask password (via non-stored-password field).

          Show
          tuukkamustonen Tuukka Mustonen added a comment - Justed bumped into this (on 1.25) and it's a huge security hole that should be patched asap. As a workaround, I ended up disabling rebuilding from those jobs that ask password (via non-stored-password field).

            People

            • Assignee:
              ragesh_nair ragesh_nair
              Reporter:
              akostadinov akostadinov
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated: