The site that you are currently viewing is a static version of the Software Factory
documentation delivered with the
version v7.2.
For up-to-date documentation, see the
latest version.
Secrets, Tokens and Credentials in Coverity
2 minute read
This document lists all secrets, tokens and credentials that can be configured and managed by an administrator user in Coverity.
List of credentials
| Credentials type | Usage | Official documentation link | Comment |
|---|---|---|---|
| Tokens | |||
| Authentication Keys | API auth and run Coverity analysis from local | Authentication Keys | |
| Other | |||
| Username/password | User Authentication | Configuring sign-in settings |
Credential Configuration Parameters
This section lists all parameters available for credential configuration. Each parameter can be set by an administrator through the Configuration > System
Single Sign-on Authentication
Software Factory recommends implementing SAML-based authentication for Single Sign-On (SSO).
Using native users and groups should be avoided.
| Credentials type | Parameters | Configuration location | Admin panel configuration | Default configuration | Recommendation | Official documentation link |
|---|---|---|---|---|---|---|
| Login/password | Enable Local Password Policy | Only in UI | Admin > System Settings > Local Authentication | Disabled | Enabled - Software Factory recommends setting up SSO . | Configuring password requirements |
| Minimum password length | Only in UI | Admin > System Settings > Local Authentication | 1 | 1 - Software Factory recommends setting up SSO . | Configuring password requirements | |
| Number of unsuccessful sign in attempts | Only in UI | Admin > System Settings > Local Authentication | 10 | 5 - Software Factory recommends setting up SSO . | Configuring password requirements | |
| Prompt users to update their password | Only in UI | Admin > System Settings > Local Authentication | Disabled | Enabled - Software Factory recommends setting up SSO . | Configuring password requirements |
Managing Authentication Keys by Admin for other users
According to Coverity official documentation:
- Authentication keys are created, viewed, and revoked only by the user who created them either via UI or via command-line Sample command for create
- Admins don’t have a way to view or manage other users’ authentication keys via UI
- Admins can only revoke other user’s authentication key via CLI Sample command for revoke authentication key with ID 12345
Sample command for creating own authentication key
cov-manage-im --url https://cim.company.com --user test \
--password secret --mode auth-key --create --output-file myFile \
--set description:"test user authentication file" \
--set expiration:"after_90_days"
Sample command for revoking authentication key by admin
cov-manage-im --mode auth-key --revoke 12345