Details
-
Type:
Task
-
Status: Resolved (View Workflow)
-
Priority:
Major
-
Resolution: Fixed
-
Component/s: ci, ci.jenkins.io, ldap, trusted.ci
-
Labels:None
-
Similar Issues:
Description
There are a bunch of ldap groups with members who doesn't seems to be used anywhere
'trusted-ro' is not used anywhere but has members where 2 on 4 are wrong
'jenkins' group is used on ci and trusted but doesn't hold any members
jenkins-admins doesn't have admin permission on ci.jenkins.io
Attachments
Activity
R. Tyler Croy can you confirm that trusted-ro and trusted-admin is designed for trusted.ci ?
My suggestion is to configure
ci.jenkins.io:
jenkins -> trigger build permission
jenkins-admin -> full admin permission
trusted.ci:
trusted-ro read only access
trusted-admin full admin permissions
no anonymous access