Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-30532

rebuild shuld not store last used password non-stored

    XMLWordPrintable

    Details

    • Similar Issues:

      Description

      It's very bad that non-stored password parameters are stored for future rebuild. That's not what user expect - i.e. non-stored password should not be stored anywhere no matter what. This is to have some basic password security.

        Attachments

          Activity

          Hide
          tuukkamustonen Tuukka Mustonen added a comment -

          Justed bumped into this (on 1.25) and it's a huge security hole that should be patched asap.

          As a workaround, I ended up disabling rebuilding from those jobs that ask password (via non-stored-password field).

          Show
          tuukkamustonen Tuukka Mustonen added a comment - Justed bumped into this (on 1.25) and it's a huge security hole that should be patched asap. As a workaround, I ended up disabling rebuilding from those jobs that ask password (via non-stored-password field).

            People

            Assignee:
            ragesh_nair ragesh_nair
            Reporter:
            akostadinov akostadinov
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated: