[JENKINS-36007] Way to mask arbitrary Secret (was: Password is clear on log with input parameter) - Jenkins Jira

Type: New Feature
Resolution: Unresolved
Priority: Critical
Component/s: credentials-binding-plugin, mask-passwords-plugin
Labels:
- pipeline
- security

Similar Issues:
Powered by SuggestiMate

Show

On jenkins pipeline i use input with Password param but password is shown on console log

exemple:
def userInput = input(
id: 'userInput', message: 'Let\'s promote?', submitter: 'DL_KATANACLOUD_TEAM', parameters: [
[$class: 'PasswordParameterDefinition', description: 'Password', name: 'pwd']
])
sh ("echo ${userInput['pwd']}")

is duplicated by

JENKINS-34264 Support Global passwords from Mask Passwords in Pipeline

Resolved

relates to

JENKINS-27398 Pipeline-as-Code CredentialsProvider for a job

Open

JENKINS-43814 Password parameters should be hidden in pipeline logs by default

Open

JENKINS-27486 Workflow step to mask console output

Resolved

JENKINS-47101 Pipeline withCredentials step does not mask step descriptions for variables with the same name as existing system variables

Resolved

Assignee:: Jesse Glick

Reporter:: sébastien glon

Votes:: 7 Vote for this issue

Watchers:: 11 Start watching this issue

Created:: 2016-06-16 10:42

Updated:: 2019-07-09 22:12

Details

Description

Attachments

Issue Links

Activity

People

Dates