Skip to content

Instantly share code, notes, and snippets.

@tuxfight3r

tuxfight3r/jenkins-decrypt.groovy

Created September 23, 2015 11:36
Show Gist options
  • Star 63 You must be signed in to star a gist
  • Fork 26 You must be signed in to fork a gist
  • Save tuxfight3r/eca9442ff76649b057ab to your computer and use it in GitHub Desktop.
Save tuxfight3r/eca9442ff76649b057ab to your computer and use it in GitHub Desktop.
Download ZIP
Decrypting Jenkins Password
Raw
jenkins-decrypt.groovy
#To Decrypt Jenkins Password from credentials.xml
#<username>jenkins</username>
#<passphrase>your-sercret-hash-S0SKVKUuFfUfrY3UhhUC3J</passphrase>
#go to the jenkins url
http://jenkins-host/script
#In the console paste the script
hashed_pw='your-sercret-hash-S0SKVKUuFfUfrY3UhhUC3J'
passwd = hudson.util.Secret.decrypt(hashed_pw)
println(passwd)
@egr-ext
Copy link

egr-ext commented Mar 9, 2018

@vijayg92 have you find a solution for a secret file stored in credentials.xml ?

@fjlopezs
Copy link

@vijayg92 , @egr-ext
I use the code that I've posted before.

@bencoughlan
Copy link

remember that this needs the "="

i.e.

if
KEY_PASSWORD=tmdHc/YjAIu1O/XxwnyLTjgHIK1h95JwpskSy23Khj5

then

String key = "tmdHc/YjAIu1O/XxwnyLTjgHIK1h95JwpskSy23Khj5="
def secret = hudson.util.Secret.fromString(key)
println(secret.getPlainText())

@sigmunau
Copy link

@vijayg92 , @egr-ext This works for me:

println(new String(com.cloudbees.plugins.credentials.SecretBytes.fromString("{....}").getPlainData(), "ASCII"))

@TheFluo
Copy link

TheFluo commented Aug 24, 2023
edited

Hello, if you don't have acces to the console ... to verify for example the LDAP password that was encrypted ... how do you decrypt the generated password in the config.xml for the LDAP ?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment