1. Is it going to be possible to run TC over https out of the box? I can see this becoming an issue for some of my more paranoid clients.
2. What is the most secure way to provide properties such as usernames/passwords to a build?
- If I specify properties against the build configuration through the front end, then all developers with access to the project can see them (via view configuration) - which is not something I want to happen.
- Using CruiseControl, I'd normally put these in a build.properties file. CruiseControl runs under a user that only admins have access to and therefore the properties remain somewhat secure. I can't do this with TC because builds that do a 'clean' will remove the properties file also.
Ideally, I'd like to be able specify these properties through the front end (because it's quick and easy) but I'd like to be able to mark some of them as private.
Feedback/workarounds would be appreciated and if required I'll raise a feature request.