Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-61808

Always encrypt f:password values, not just those backed by Secret

    XMLWordPrintable

Details

    • Improvement
    • Resolution: Fixed
    • Minor
    • core
    • 2.236

    Description

      Too many people get theĀ Secret getters wrong. What if we just always returned a Secret, and had a StringConverter to handle submitted secrets and transparently decrypt again?

      This would eliminate this class of problem. Only storage would really need to be done as Secret, but the internal API types wouldn't matter so much.

      Test cases need to include String typed encrypted secrets, and unmatched getter/setter types.

      Attachments

        Issue Links

          causes

          Bug - A problem which impairs or prevents the functions of the product. JENKINS-63500 JENKINS-61808 breaks doc generation for build and input steps

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Open

          Bug - A problem which impairs or prevents the functions of the product. JENKINS-63499 Configuration of password parameters broken in Declarative Pipelines in Jenkins 2.236+

          • Blocker - Blocks development and/or testing work, production could not run.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. JENKINS-62305 Error "hudson.model.PasswordParameterValue.value expects class hudson.util.Secret" since 2.236

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. JENKINS-63516 Use of password parameters with the input step broken in Jenkins 2.236+

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved
          links to

          Web Link jenkins #4630

          Activity

            People

              danielbeck Daniel Beck
              danielbeck Daniel Beck
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: