Loading...

XML

Word

Printable

Type: Suggestion
Resolution: Done
Fix Version/s: 5.15.0.1
Component/s: Security, Variables
Labels:

Feedback Policy:

Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

All variables are currently stored in the database with no encryption (Exceptions are repository passwords and Bamboo passwords [which are irreversibly hashed/salted]).

ex. : Deployment variables that contain passwords are stored in the database with no encryption. So anyone with access to the database schemas will be able to view all the sensitive passwords that are setup for deployment projects in Bamboo.

Please provide an option to encrypt all variables and store an encrypted version of them as this can be a major security concern for many users.

is related to

BAM-12318 Improve the process for the hashed and saved repository passwords to be un-reversible

Closed

BAM-13818 Bamboo variables containing password are stored in plain text in the Bamboo export and in the database

Closed

mentioned in: Page Loading...

Assignee:: Przemek Bruski

Reporter:: Sepideh Setayeshfar (Inactive)

Votes:: 44 Vote for this issue

Watchers:: 39 Start watching this issue

Created:: 13/Jan/2014 9:18 PM

Updated:: 19/Sep/2019 5:46 AM

Resolved:: 16/Jan/2017 11:35 PM

Details

Description

Attachments

Issue Links

Forms

Activity

People

Dates