-
Bug
-
Resolution: Fixed
-
Minor
-
Jenkins: 1.590
Java: 1.7.0_67
Hello,
We have a job with project-based security enabled. The job has to be visible to anonymous users and they should only have read-only permissions. After applying the "Read" permission for the job I tried checking out it out as an anonymous user. The job is displayed to the user, but I found out he can redeploy artifacts by clicking on the last successful/failed build number. This functionality is not desired and probably a bug.
Regards,
Steve
- links to
[JENKINS-25691] Redeploy link is displayed to Anonymous users with read only permissions for a job
Steve Todorov
created issue -
| Component/s | New: maven-plugin [ 16033 ] | |
| Component/s | Original: security [ 15508 ] | |
| Component/s | Original: core [ 15593 ] | |
| Component/s | Original: matrix-auth-plugin [ 18131 ] | |
| Assignee | Original: Jesse Glick [ jglick ] | |
| Labels | New: permission |
Steve Todorov
made changes -
| Attachment | New: Configure Global Security ACL.png [ 28036 ] | |
| Attachment | New: job acl.png [ 28037 ] |
| Assignee | New: Daniel Beck [ danielbeck ] |
| Remote Link | New: This issue links to "PR 33 (Web Link)" [ 11913 ] |
| Priority | Original: Critical [ 2 ] | New: Minor [ 4 ] |
| Resolution | New: Fixed [ 1 ] | |
| Status | Original: Open [ 1 ] | New: Resolved [ 5 ] |
| Workflow | Original: JNJira [ 159668 ] | New: JNJira + In-Review [ 196160 ] |