search

jenkinsci / fortify-plugin

Fortify Jenkins plugin
https://plugins.jenkins.io/fortify
Other
23 stars 31 forks source link

fortifyUpload : : Allow overriding of SSC URL and Authentication Token #60

Open asergeant01 opened 2 years ago

asergeant01 commented 2 years ago

What feature do you want to see added?

Currently the fortify assessment credentials are stored globally, however i want to provide these at runtime so i can use a credential that is folder scoped.

e.g.

current: 

fortifyUpload appName: "cerebro_${GIT_REPO_NAME}", 
                        appVersion: "${APP_VERSION}", 
                        failureCriteria: '[fortify priority order]:critical',
                        resultsFile: "${GIT_REPO_NAME}.fpr",
                        timeout: "3"

desired:

fortifyUpload appName: "cerebro_${GIT_REPO_NAME}", 
                        appVersion: "${APP_VERSION}",
                        serverURL: "myServerURL",
                        token: "credentialID",
                        failureCriteria: '[fortify priority order]:critical',
                        resultsFile: "${GIT_REPO_NAME}.fpr",
                        timeout: "3"

Upstream changes

No response

TobiasMeyster commented 1 year ago

This would be very helpful for me as i have multiple ssc tokens in different projects. Am I the only one? Does anyone have a workaround for this?

TobiasMeyster commented 11 months ago

Or another thing could be that we can configure multiple SSC instances in Global Jenkins Configuration with aliases. the Pipeline steps then would need another parameter for ssc instance