It's all about the answers!

Ask a question
QuestionsTagsUsersBadges
Follow this question
Question details

×42,788

question asked: Sep 30 '08, 7:16 a.m.
question was seen: 4,410 times
last updated: Sep 30 '08, 7:16 a.m.

Related questions

FAQ - How this Forum works

[JBE] Having the build user credentials passed safely

1
1
Anuerin Diaz (4112517) | asked Sep 30 '08, 7:16 a.m.
Reading the build script examples, the user id and password are defined in the script itself (or passed as ANT parameters). Our security policy is very strict against sharing of passwords so is there a way of safely getting the credentials passed to the Ant script without embedding it on the file itself, or in the build definition (which is still readable to the users).

We are partial to doing either or and then raising a security exemption but is there another way to do this and still comply with the security policies? Thanks.

ciao!

2 answers

Most liked answers ↑|Newest answers|Oldest answers

0
permanent link
Jan Van de Poel (2413216) | answered Sep 30 '08, 8:38 a.m.
To avoid using the password for the build user in your ANT script or passing it as a property, you can create a passwordfile that stores your password in a non-readable form.

You can find the explanation here:
https://jazz.net/wiki/bin/view/Main/BuildExamples
0
permanent link
Anuerin Diaz (4112517) | answered Sep 30 '08, 8:26 p.m.
Thanks. I was also thinking of having the JBE credentials stored securely in the VM and accessed by the scripts being executed. The only catch is if the build script is being executed outside the JBE but it might be too much work to have the JBE Ant tasks to transparently figure out what type of build they are currently executing under.

ciao!

Your answer

Register or to post your answer.


Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.