Use more secure API to store passwords
Issue #26
resolved
Bamboo 6 provides a more secure API (SecretEncryptionService
instead of EncryptionService
) to store sensitive data. Use that for Bamboo 6 and stick to the old API on Bamboo 5. Unfortunately it will require to create a new branch of PowerShell Task as API are not backward compatible. So from now 3 branches will exist:
- 1.2.x - Bamboo 6.x
- 1.1.x - Bamboo 5.x
- 1.0.x - Bamboo 4.x
Additional info: https://confluence.atlassian.com/bamboo/system-wide-encryption-873930114.html
Comments (2)
-
reporter -
reporter - changed status to resolved
Fixed in 1.2.0.
- Log in to comment
To check which encryption is used you can export build plan to specs and take a look at the
psPassword
parameter.The old API:
and the new more secure API:
BAMSCRT
prefix tells that it’s a new API.