Details
-
Suggestion
-
Resolution: Fixed
-
P2: Important
-
5.12.8
-
None
-
-
2020wk32, 2020wk34
Description
There are the following options to provide passwords:
--storepass
--keypass
But when androiddeployqt is used on build/ci servers (like Jenkins) the command itself is put in a log, and passwords can leak.
It would be good to add options like:
--storepass_env VAR_NAME
--keypass_env VAR_NAME
so passwords will not be put in a server log (since will be read from env variables).
Attachments
For Gerrit Dashboard: QTBUG-84922 | ||||||
---|---|---|---|---|---|---|
# | Subject | Branch | Project | Status | CR | V |
309566,3 | Android: update androiddeployqt package signing docs | dev | qt/qtdoc | Status: MERGED | +2 | 0 |
309567,11 | Android: add the option to set package signing information from env vars | dev | qt/qtbase | Status: MERGED | +2 | 0 |