Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-34427

Sonar user password is stored in plain text in every job configuration

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: Critical Critical
    • quality-gates-plugin
    • None
    • Quality Gates Plugin version 2.3
      Jenkins core version 1.652

      The sonar user password that the admin configured in the system configuration is stored in plain text in every job configuration.
      Thats a security issue.
      Im also not sure what will happen, if the admin changed the password in the system configuration. Has the job then still the old password and problems to access sonar?

        1. Bildschirmfoto 2016-05-04 um 09.24.33.png
          Bildschirmfoto 2016-05-04 um 09.24.33.png
          195 kB

            ivanash Ivana Sh
            stefanbrausch Stefan Brausch
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

              Created:
              Updated:
              Resolved: