diff options
| -rw-r--r-- | doc/user/application_security/sast/index.md | 21 |
1 files changed, 12 insertions, 9 deletions
diff --git a/doc/user/application_security/sast/index.md b/doc/user/application_security/sast/index.md index 3b344ee6182..e50e4a3d0ac 100644 --- a/doc/user/application_security/sast/index.md +++ b/doc/user/application_security/sast/index.md @@ -127,15 +127,18 @@ the pipeline configuration, the last mention of the variable will take precedenc #### Using a variable to pass username and password to a private Maven repository -If you have a private Apache Maven repository that requires login credentials, you can use the `MAVEN_CLI_OPTS` [environment variable](#available-variables) to pass a username and password. If the username is `myuser` and the password is `verysecret` then you can set: - -```yaml -include: - template: SAST.gitlab-ci.yml - -variables: - MAVEN_CLI_OPTS: "-Drepository.password=verysecret -Drepository.user=myuser" -``` +If you have a private Apache Maven repository that requires login credentials, +you can use the `MAVEN_CLI_OPTS` [environment variable](#available-variables) +to pass a username and password. You can set it under your project's settings +so that your credentials aren't exposed in `.gitlab-ci.yml`. + +If the username is `myuser` and the password is `verysecret` then you would +set the following [variable](../../../ci/variables/README.md#via-the-ui) +under your project's settings: + +| Type | Key | Value | +| ---- | --- | ----- | +| Variable | `MAVEN_CLI_OPTS` | `-Drepository.password=verysecret -Drepository.user=myuser` | ### Overriding the SAST template |