Ok .. so we found out what's going on. As soon as you push the first time, a popup opens and asks you for your credentials and 2fa. If you enter that stuff, windows automatically stores that in it's password manager.
So the release manager will have to make sure the credentials are cleared after his release work. Chris Am 23.03.20, 19:44 schrieb "Alex Harui" <[email protected]>: On 3/23/20, 11:32 AM, "Christofer Dutz" <[email protected]> wrote: Hi Alex, I did check and I didn't directly find any .git .ssh or whatsoever directories ... do you have an Idea where that would be saved on windows? The commits are authorized by Carlos and it's his RDP connection, that's why I'm asking if there is any RDP magic going on. I didn't see him entering anything anywhere and he said he didn't do it before. I don't know for sure, but here's a few links: https://stackoverflow.com/questions/46878457/adding-git-credentials-on-windows https://git-scm.com/book/en/v2/Git-Tools-Credential-Storage I'm wondering if Carlos can remember if he did.anything like that back when he wrote this: https://lists.apache.org/thread.html/8ae38cea0c736418b432b2353f967161c4f8448261a3bdce390e8c46%40%3Cdev.royale.apache.org%3E As I replied back then, we shouldn't have GPG signing on the CI Server, and hopefully no other credentials got added either. HTH, -Alex PS: I'm purposefully not looking myself so as not to accidentally boot someone off the RDP connection.
