timja / jenkins-gh-issues-poc-06-18

0 stars 0 forks source link

[JENKINS-25567] Matrix-based security does not allow read-only on Configure System #5627

Open timja opened 9 years ago

timja commented 9 years ago

For our jenkins setup we use Matrix-based security using 2 groups (CI_Admins and CI_Users)

We want to prevent that CI_Users ALTER Jenkins configuration (So the stuff under Manage Jenkins) , however , they should be able to VIEW the Jenkins configuration, and most notably the Global properties under Configure System.

I do not see a way to do this using the security matrix.
Overall--> Read is enabled for CI_Users


Originally reported by quartelh, imported from: Matrix-based security does not allow read-only on Configure System
  • status: Open
  • priority: Minor
  • resolution: Unresolved
  • imported: 2022/01/10
timja commented 9 years ago

jglick:

Did you install the Extended Read Permission plugin?

timja commented 9 years ago

danielbeck:

Extended read permission does not cover system configuration, only nodes and items.

Since the plugin only enables a core feature hidden behind a system property switch, changing type to Feature, and component to Core.