[JENKINS-21413] configuration page exposes sonar password

Type: Bug
Resolution: Duplicate
Priority: Major
Component/s: sonar-plugin
Labels:
None

Similar Issues:
Powered by SuggestiMate

Show

Sonar password is exposed on configuration page as user just has to look into DOM. SonarInstallation uses String for passwords, should use Secret.

Oliver Gondža added a comment - 2015-01-23 18:51

Fixed proposed for quite some time: https://github.com/SonarSource/jenkins-sonar-plugin/pull/9

Oliver Gondža added a comment - 2015-01-23 18:51 Fixed proposed for quite some time: https://github.com/SonarSource/jenkins-sonar-plugin/pull/9

sbrandhof added a comment - 2015-01-26 08:28

Hi,
Roadmap of Jenkins plugin is tracked in https://jira.codehaus.org/browse/SONARJNKNS, not at jenkins-ci.org
This ticket is planned for next release: https://jira.codehaus.org/browse/SONARJNKNS-201

sbrandhof added a comment - 2015-01-26 08:28 Hi, Roadmap of Jenkins plugin is tracked in https://jira.codehaus.org/browse/SONARJNKNS , not at jenkins-ci.org This ticket is planned for next release: https://jira.codehaus.org/browse/SONARJNKNS-201

Assignee:: Sonar Team

Reporter:: Nicolas De Loof

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2014-01-16 19:26

Updated:: 2015-01-26 08:29

Resolved:: 2015-01-26 08:29

Jenkins

Details

Description

Attachments

Activity

Collapse comment: Oliver Gondža added a comment - 2015-01-23 18:51

Expand comment: Oliver Gondža added a comment - 2015-01-23 18:51

Collapse comment: sbrandhof added a comment - 2015-01-26 08:28

Expand comment: sbrandhof added a comment - 2015-01-26 08:28

People

Dates