[JIRA] (JENKINS-40017) Passwords are replaced but not masked in global envs
Title: Message Title Oleg Nenashev assigned an issue to Unassigned Sorry, I was unable to find any time to work on this plugin. I have decided to mark it for adoption, so anybody is welcome to take ownership and to work on this issue. Jenkins / JENKINS-40017 Passwords are replaced but not masked in global envs Change By: Oleg Nenashev Assignee: Oleg Nenashev Add Comment This message was sent by Atlassian JIRA (v7.3.0#73011-sha1:3c73d0e) -- You received this message because you are subscribed to the Google Groups "Jenkins Issues" group. To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-issues+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[JIRA] (JENKINS-40017) Passwords are replaced but not masked in global envs
Title: Message Title
Jakub Bochenski updated an issue
Jenkins / JENKINS-40017
Passwords are replaced but not masked in global envs
Change By:
Jakub Bochenski
We have a global password called {{JENKINSPASS}}We have a global env {{ANT_OPTS}} defined, which references it like {{-Djavax.net.ssl.keyStorePassword=$\{JENKINSPASS\}}}For no apparent reason (we didn't upgrade) an unmasked value of the password started to appear in "Enviorment Variables" view. Note {{JENKINSPASS}} itself is not masked. {code}ANT_OPTS -Djavax.net.ssl.keyStorePassword=N0wC0mpr0miss3dS3cr3tJENKINSPASS [***]{code}Older builds don't contain an entry for ANT_OPTS at all.
Add Comment
This message was sent by Atlassian JIRA (v7.1.7#71011-sha1:2526d7c)
--
You received this message because you are subscribed to the Google Groups "Jenkins Issues" group.
To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-issues+unsubscr...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
[JIRA] (JENKINS-40017) Passwords are replaced but not masked in global envs
Title: Message Title
Jakub Bochenski updated an issue
Jenkins / JENKINS-40017
Passwords are replaced but not masked in global envs
Change By:
Jakub Bochenski
We have a global password called {{JENKINSPASS}}We have a global env {{ANT_OPTS}} defined with , which references it like {{-Djavax.net.ssl.keyStorePassword=$\{JENKINSPASS\}}}For no apparent reason (we didn't upgrade) an unmasked value of the password started to appear in "Enviorment Variables" view. Note {{JENKINSPASS}} itself is not masked. {code}ANT_OPTS -Djavax.net.ssl.keyStorePassword=N0wC0mpr0miss3dS3cr3tJENKINSPASS [***]{code}Older builds don't contain an entry for ANT_OPTS at all.
Add Comment
This message was sent by Atlassian JIRA (v7.1.7#71011-sha1:2526d7c)
--
You received this message because you are subscribed to the Google Groups "Jenkins Issues" group.
To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-issues+unsubscr...@googlegroups.com.
For more options, visit
[JIRA] (JENKINS-40017) Passwords are replaced but not masked in global envs
Title: Message Title Jakub Bochenski commented on JENKINS-40017 Re: Passwords are replaced but not masked in global envs Last Jenkins upgrade was 6 days before Add Comment This message was sent by Atlassian JIRA (v7.1.7#71011-sha1:2526d7c) -- You received this message because you are subscribed to the Google Groups "Jenkins Issues" group. To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-issues+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[JIRA] (JENKINS-40017) Passwords are replaced but not masked in global envs
Title: Message Title
Jakub Bochenski updated an issue
Jenkins / JENKINS-40017
Passwords are replaced but not masked in global envs
Change By:
Jakub Bochenski
We have a global password called {{JENKINSPASS}}We have a global env {{ANT_OPTS}} defined with references it like {{-Djavax.net.ssl.keyStorePassword=$\{JENKINSPASS\}}}For no apparent reason (we didn't upgrade) an unmasked value of the password started to appear in "Enviorment Variables" view. Note {{JENKINSPASS}} itself is not masked. {code}ANT_OPTS -Djavax.net.ssl.keyStorePassword=N0wC0mpr0miss3dS3cr3tJENKINSPASS [***]{code}Older builds don't contain an entry for ANT_OPTS at all.
Add Comment
This message was sent by Atlassian JIRA (v7.1.7#71011-sha1:2526d7c)
--
You received this message because you are subscribed to the Google Groups "Jenkins Issues" group.
To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-issues+unsubscr...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
[JIRA] (JENKINS-40017) Passwords are replaced but not masked in global envs
Title: Message Title
Jakub Bochenski updated an issue
Jenkins / JENKINS-40017
Passwords are replaced but not masked in global envs
Change By:
Jakub Bochenski
We have a global password called {{JENKINSPASS}}We have a global env {{ANT_OPTS}} defined with references it like {{-Djavax.net.ssl.keyStorePassword=$ \ {JENKINSPASS \ }}}For no apparent reason an unmasked value of the password started to appear in "Enviorment Variables" view. Note {{JENKINSPASS}} itself is not masked. {code}ANT_OPTS -Djavax.net.ssl.keyStorePassword=N0wC0mpr0miss3dS3cr3tJENKINSPASS [***]{code}Older builds don't contain an entry for ANT_OPTS at all.
Add Comment
This message was sent by Atlassian JIRA (v7.1.7#71011-sha1:2526d7c)
--
You received this message because you are subscribed to the Google Groups "Jenkins Issues" group.
To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-issues+unsubscr...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
[JIRA] (JENKINS-40017) Passwords are replaced but not masked in global envs
Title: Message Title
Jakub Bochenski created an issue
Jenkins / JENKINS-40017
Passwords are replaced but not masked in global envs
Issue Type:
Bug
Assignee:
Oleg Nenashev
Components:
mask-passwords-plugin
Created:
2016/Nov/24 3:12 PM
Environment:
Jenkins ver. 2.19.3 Mask Passwords Plugin 2.8
Priority:
Blocker
Reporter:
Jakub Bochenski
We have a global password called JENKINSPASS We have a global env ANT_OPTS defined with references it like {{-Djavax.net.ssl.keyStorePassword=$ {JENKINSPASS} }} For no apparent reason an unmasked value of the password started to appear in "Enviorment Variables" view. Note JENKINSPASS itself is not masked.
ANT_OPTS -Djavax.net.ssl.keyStorePassword=N0wC0mpr0miss3dS3cr3t
JENKINSPASS [***]
Older builds don't contain an entry for ANT_OPTS at all.
