Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-29867

Add options, which allow disabling the Injected variables listings

    XMLWordPrintable

Details

    • New Feature
    • Resolution: Fixed
    • Major
    • envinject-plugin
    • None

    Description

      In several cases Jenkins users may expose passwords as a plain text in "Injected variables" action (e.g. password reassigning for a non-sensitive variable). It may make sense to completely prohibit the exposure of environment variables via:

      • Permissions
      • Global Settings
      • Per-project settings

      Attachments

        Issue Links

          is duplicated by

          Bug - A problem which impairs or prevents the functions of the product. JENKINS-24287 EnvInject exposes password hashes

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved
          is related to

          Bug - A problem which impairs or prevents the functions of the product. JENKINS-24287 EnvInject exposes password hashes

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved

          Activity

            People

              oleg_nenashev Oleg Nenashev
              oleg_nenashev Oleg Nenashev
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: