• Icon: New Feature New Feature
    • Resolution: Unresolved
    • Icon: Minor Minor
    • credentials-plugin
    • None

      Our workflow uses branches for feature development, qa and releases to production.  This different environments have credentials attached to them.   For code merges go through a review stage and only authorized folks can perform merges to certain branches.   We have just started using jenkins pipeline with the withCredentials step.   It would be awesome if we could limit access to credentials when specific branches are being built.  Ie it should not be possible to get a credential for production when a feature/* branch is being built.  

          [JENKINS-43633] Scope credentials to branch being built

          Jesse Glick added a comment -

          Sounds like an RFE for credentials to create a new scope which allows certain child item regexps to access credentials but not others.

          Alternately, omit the production branch from the multibranch setup, and create a separate job in a separate folder containing production credentials which only builds the production branch.

          Jesse Glick added a comment - Sounds like an RFE for credentials to create a new scope which allows certain child item regexps to access credentials but not others. Alternately, omit the production branch from the multibranch setup, and create a separate job in a separate folder containing production credentials which only builds the production branch.

          For a stop gap, I'm curious if "Configure > Pipeline Libraries > load implicitly" could be used to effectively disable specific credentials.

          Michael Jackson added a comment - For a stop gap, I'm curious if "Configure > Pipeline Libraries > load implicitly" could be used to effectively disable specific credentials.

            Unassigned Unassigned
            goraxe Gordon Irving
            Votes:
            7 Vote for this issue
            Watchers:
            9 Start watching this issue

              Created:
              Updated: