Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-44572

not masking passwords that are substrings

    Details

    • Type: New Feature
    • Status: Closed (View Workflow)
    • Priority: Major
    • Resolution: Not A Defect
    • Labels:
      None
    • Environment:
      jenkins 2.46.1
      credentials-binding-plugin 1.11
    • Similar Issues:

      Description

      We have a pipeline that uses the credentials binding plugin.  When a password, say SEKRIT, within the credentials binding closure is echo'd with surrounding whitespace, it is masked as ****.  However, if it is in the middle of a long string, especially a string of the form "--some-arg=foo –password=SEKRIT", the password is not masked.

        Attachments

          Activity

          Hide
          llamahunter Richard Lee added a comment - - edited

          Hold on, this might be 'pilot error'.  Looks like the user was copying the credentials out of the withCredentials {} block and then echoing them.  I could certainly see how masking probably would not work in that situation.  Investigating moving the echo within the closure.

          Show
          llamahunter Richard Lee added a comment - - edited Hold on, this might be 'pilot error'.  Looks like the user was copying the credentials out of the withCredentials {} block and then echoing them.  I could certainly see how masking probably would not work in that situation.  Investigating moving the echo within the closure.
          Hide
          llamahunter Richard Lee added a comment -

          pilot error.  user was using withCredentials incorrectly.

          Show
          llamahunter Richard Lee added a comment - pilot error.  user was using withCredentials incorrectly.

            People

            • Assignee:
              Unassigned
              Reporter:
              llamahunter Richard Lee
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: