Thanks for the replies. We have removed the keystore, and are now using the reverse proxy method.
John. On Wednesday, 28 September 2022 at 12:37:46 UTC+1 db...@cloudbees.com wrote: > On Wed, Sep 28, 2022 at 12:00 PM James Nord <james...@gmail.com> wrote: > >> jenkins (winstone) can load arguments from a config file in addition to >> the command line (--config). >> https://github.com/jenkinsci/winstone#configuration-file >> >> so you can (should be able) to put the password in that file. >> >> Now if you put the password in that file and make it read only by the >> jenkins user you have not really gained anything over using a passwordless >> key/certificate file that is read only by the jenkins user... >> >> (allthough I guess you could hack the systemd command to write the file >> before startup, pass the argument and then wait until Jenkins has started >> and remove the file, then only root has access normally to the password in >> the systemd configuration) >> > > There's also --paramsFromStdIn as documented at > https://github.com/jenkinsci/extras-executable-war#parameters-from-stdin > -- You received this message because you are subscribed to the Google Groups "Jenkins Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/5820a5ac-b46b-481c-8b04-659dbb34687fn%40googlegroups.com.
