-
New Feature
-
Resolution: Unresolved
-
Major
-
Ubuntu 14.04 LTS
OpenJDK 1.7 IcedTea
Jenkins ver. 1.635
Script Security Plugin 1.15
Groovy Postbuild 2.2.2
The Groovy Postbuild plugin doesn't appear to adhere to the Jenkins.RUN_SCRIPTS permission at all. I'm generating jobs using the Job DSL Plugin and have given the RUN_SCRIPTS permission to the anonymous user.
When I generate scripts this plugin still requires the script approval.
Authentication is enabled but anonymous is given RunScripts permission. I would assume anybody would be able to create scripts (including the Job DSL plugin generated jobs).
- is duplicated by
-
JENKINS-40118 Many script approvals pending after upgrading Jenkins
-
- Resolved
-
[JENKINS-31201] Job DSL support for ScriptApproval (was: Groovy postbuild ignores RUN_SCRIPTS permission)
Sam Gleske
created issue -
Sam Gleske
made changes -
| Link | New: This issue is related to JENKINS-22661 [ JENKINS-22661 ] |
Sam Gleske
made changes -
| Description |
Original:
This plugin doesn't appear to adhere to the {{Jenkins.RUN_SCRIPTS}} permission at all. I'm generating jobs using the Job DSL Plugin and have given the {{RUN_SCRIPTS}} permission to the {{anonymous}} user. When I generate scripts then this plugin still requires the script approval. Authentication is enabled but anonymous is given RunScripts permission. I would assume anybody would be able to create scripts (including the Job DSL plugin generated jobs). |
New:
The Groovy Postbuild plugin doesn't appear to adhere to the {{Jenkins.RUN_SCRIPTS}} permission at all. I'm generating jobs using the Job DSL Plugin and have given the {{RUN_SCRIPTS}} permission to the {{anonymous}} user. When I generate scripts then this plugin still requires the script approval. Authentication is enabled but anonymous is given RunScripts permission. I would assume anybody would be able to create scripts (including the Job DSL plugin generated jobs). |
Sam Gleske
made changes -
| Description |
Original:
The Groovy Postbuild plugin doesn't appear to adhere to the {{Jenkins.RUN_SCRIPTS}} permission at all. I'm generating jobs using the Job DSL Plugin and have given the {{RUN_SCRIPTS}} permission to the {{anonymous}} user. When I generate scripts then this plugin still requires the script approval. Authentication is enabled but anonymous is given RunScripts permission. I would assume anybody would be able to create scripts (including the Job DSL plugin generated jobs). |
New:
The Groovy Postbuild plugin doesn't appear to adhere to the {{Jenkins.RUN_SCRIPTS}} permission at all. I'm generating jobs using the Job DSL Plugin and have given the {{RUN_SCRIPTS}} permission to the {{anonymous}} user. When I generate scripts this plugin still requires the script approval. Authentication is enabled but anonymous is given RunScripts permission. I would assume anybody would be able to create scripts (including the Job DSL plugin generated jobs). |
| Link | Original: This issue is related to JENKINS-22661 [ JENKINS-22661 ] |
| Component/s | New: job-dsl-plugin [ 16720 ] | |
| Component/s | Original: groovy-postbuild-plugin [ 15685 ] | |
| Assignee | Original: Stefan Wolf [ wolfs ] | |
| Issue Type | Original: Bug [ 1 ] | New: New Feature [ 2 ] |
| Labels | New: api security | |
| Summary | Original: Groovy postbuild ignores RUN_SCRIPTS permission | New: Job DSL support for ScriptApproval (was: Groovy postbuild ignores RUN_SCRIPTS permission) |
| Workflow | Original: JNJira [ 166387 ] | New: JNJira + In-Review [ 182380 ] |
| Link |
New:
This issue is duplicated by |
| Link | New: This issue relates to SECURITY-369 [ SECURITY-369 ] |