[JBE] Having the build user credentials passed safely
Reading the build script examples, the user id and password are defined in the script itself (or passed as ANT parameters). Our security policy is very strict against sharing of passwords so is there a way of safely getting the credentials passed to the Ant script without embedding it on the file itself, or in the build definition (which is still readable to the users).
We are partial to doing either or and then raising a security exemption but is there another way to do this and still comply with the security policies? Thanks.
ciao!
We are partial to doing either or and then raising a security exemption but is there another way to do this and still comply with the security policies? Thanks.
ciao!
2 answers
Thanks. I was also thinking of having the JBE credentials stored securely in the VM and accessed by the scripts being executed. The only catch is if the build script is being executed outside the JBE but it might be too much work to have the JBE Ant tasks to transparently figure out what type of build they are currently executing under.
ciao!
ciao!