Subscribe Join 180,000+ subscribers and receive articles from our blog about software quality, testing, QA and security. Subscribe

Storing Jenkins API Token on TestRail

I want to add a button to our TestRail test runs views which calls Jenkins API when clicked. I know that this can be done via UI Scripts but I need some way to securely store the Jenkins API token within TestRail and as long as the request is being made with JavaScript it would ultimately be exposed to the browser.

Reading this article I understand that I could use a custom PHP script on the TestRail server to in turn call the Jenkins API. However I don’t know where I would be able to securely store the API token so that the PHP script would have access to it at runtime. Surely I cannot just store the token in the .php file it’s self either.

Does TestRail have any features that could help me do this like a secret storage feature or something like that?