Hello, I am a bit confused how to handle sensitive information when using a shell script:
In https://issues.jenkins-ci.org/browse/JENKINS-37324 Sam Van Oort wrote (2017-01-11 23:37): "Lots of discussion about how to separate sensitive and nonsensitive environment variable content (markers for data, whitelist/blacklist, or custom information in their EnvVars definitions) – *Jesse Glick* <https://issues.jenkins-ci.org/secure/ViewProfile.jspa?name=jglick> has suggested a clever approach: to play with a different way of detecting secrets you would patch `BindingStep` and `MaskPasswordsBuildWrapper` to, say, not just set `PASSWORD=s3cr3t` but also `*PASSWORD+SECRET=true*`, and then document this somewhere like in `EnvironmentExpander`" The question is, how do I hide sensitive information that *DO NOT* come from credential binding in the shell script header? *Example:* String userAndPwd = "test:123" // this comes from an manual input step def userAndPwdSECRET = true // Doesn't do anything ?! (`PASSWORD+SECRET=true) sh """ set +x curl -u ${userAndPwd} https://www.google.com """ In Blue Ocean I see "set +x curl -u test:123 https://www.google.com - Shell Script" How can I mask out test:123 (=${userAndPwd}) in the shell script description header in Blue Ocean? Many thanks to any answer in advance :-) Am Dienstag, 11. Juli 2017 09:51:55 UTC+2 schrieb Jakub Pawlinski: Hi, > > Recently https://issues.jenkins-ci.org/browse/JENKINS-37324 was solved. > > In sprint review Sam Van Oort > <https://issues.jenkins-ci.org/secure/ViewProfile.jspa?name=svanoort> > demonstrated > the foundation for this https://www.youtube.com/watch?v=HhiUY70RVJY&t=510 > > He mentions there possibility of having custom caption but I have found no > way to actually achieve it. > > Maybe you know how I could make a custom description of step in > declarative pipeline, far too simple example: > > stages { > stage('A') { > steps { > bat "@echo Hello World" > > } > } > } > > > How can I make it appear as "Hello World Step — Windows Batch Script" > instead of "@echo Hello World — Windows Batch Script" that I'm getting now. > > > Thanks > > Jakub > > -- You received this message because you are subscribed to the Google Groups "Jenkins Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/8358edbf-5979-4b57-9055-a8bad0d4e2bc%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
