Global variable password values exposed with REST expand=variableContext

XMLWordPrintable

    • Type: Bug
    • Resolution: Fixed
    • Priority: High
    • 5.3
    • Affects Version/s: 5.1
    • Component/s: REST API, Security
    • None

      http://server:8085/rest/api/latest/plan/PROJECTKEY-PLANKEY/JOBKEY?expand=variableContext

      This occurs even if logged in with just use authority. Given you made passwords not visible with build results, it seems strange they are exposed this way.

              Assignee:
              Unassigned
              Reporter:
              Bob Swift
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: