Occasionally our users will file a JIRA ticket or add a comment containing sensitive information, such as AWS IAM credentials, private keys, etc. It's the classic "GitHub" problem.
I'm looking for a plugin that will:
Does something like this exist?
Super neat! We'll give this a shot as we build out our new project.
Hi Rick,
I think that you can implement first behavior and a workaround for the second one using JIRA Workflow Toolbox add-on:
You can replace each substring in description or last comment matching certain regular expression using "Copy a parsed text to a field" post-function with the following configuration:
Captura de pantalla 2016-05-27 a las 17.49.41.png
Note that:
Next version of the plugin provides a new function called findModify(string, regexp, text_expression) that will allow you to apply an actual obfuscation operation, for example leaving only first and last character of original value, and replacing inner character with dots. You can try a beta version if you want to. In this case you should use the following text to be parsed:
findModify(%{00001}, "regexp", substring(^%, 0, 1) + substring(replaceAll(^%, ".", "."), 1, length(^%) - 1) + substring(^%, length(^%) - 1, length(^%)))
You can use "Boolean validator with math, date-time or text-string terms" with the following configuration:
Captura de pantalla 2016-05-27 a las 18.35.55.png
Boolean expression is:
!matches(%{00127}, "regexp")
Note that:
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.