-
Bug
-
Resolution: Fixed
-
Major
We create a root folder and activate the "Enable project-based security".
"Open Blue Ocean" button is available at the root of our jenkins, but it disappears
when you're in that folder where "Block inheritance of global authorization matrix" is set.
- duplicates
-
-
- Closed
-
- is related to
-
-
- Open
-
[JENKINS-46540] "Open Blue Ocean" button disappers when "Block inheritance of global authorization matrix" is set in a folder
Thierry Tholle
created issue -
thitho_007 can you add a comment in the form of "expected behavior..." to make it clear where it should appear?
(also if there are any errors or anything, browser console or server side) may help
cc max_laverse any more reproduction instructions/color you can provide to help?
Max Laverse
added a comment - Sure michaelneale
Reproduction:
- docker run --net=host jenkins/jenkins:lts
- go in manage plugin and install blueocean
- activate "Project-based Matrix Authorization Strategy" in global security and give all the rights to anonymous
- create two folders "test1" and "test2"
- in "test1", activate "Enable project-based security" and give all the rights no anonymous
- in "test2", activate "Enable project-based security", give all the rights no anonymous, and block inheritance
Result:
- you see the "Open Blue Ocean" link on the left menu of test1
- you can't see the "Open Blue Ocean" link on the left menu of test2
Expected:
- The "Open Blue Ocean" link should also appear in test2
I looked into the blue-ocean-rest-impl plugin. There doesn't seem to be any logic that decide if the link should be shown or hidden.
I added log traces in the folder plugin and it looks like the Actions is there even when it's not displayed.
I don't know Jenkins very well, but I think it could be in the matrix-authorization-plugin.
Fyi, with the matrix-authorization-plugin 2.0-beta-4 the link is also displayed when the inheritance is blocked, but it could also be that the plugin is broken (haven't tested it deeply)
Max Laverse
added a comment - Sure michaelneale
Reproduction:
docker run --net=host jenkins/jenkins:lts
go in manage plugin and install blueocean
activate "Project-based Matrix Authorization Strategy" in global security and give all the rights to anonymous
create two folders "test1" and "test2"
in "test1", activate "Enable project-based security" and give all the rights no anonymous
in "test2", activate "Enable project-based security", give all the rights no anonymous, and block inheritance
Result:
you see the "Open Blue Ocean" link on the left menu of test1
you can't see the "Open Blue Ocean" link on the left menu of test2
Expected:
The "Open Blue Ocean" link should also appear in test2
I looked into the blue-ocean-rest-impl plugin. There doesn't seem to be any logic that decide if the link should be shown or hidden.
I added log traces in the folder plugin and it looks like the Actions is there even when it's not displayed.
I don't know Jenkins very well, but I think it could be in the matrix-authorization-plugin.
Fyi, with the matrix-authorization-plugin 2.0-beta-4 the link is also displayed when the inheritance is blocked, but it could also be that the plugin is broken (haven't tested it deeply) | Link |
New:
This issue duplicates |
| Resolution | New: Duplicate [ 3 ] | |
| Status | Original: Open [ 1 ] | New: Resolved [ 5 ] |
Jenn Briden
made changes -
| Status | Original: Resolved [ 5 ] | New: Closed [ 6 ] |
I am still experiencing this issue as described.
This issue got closed because of JENKINS-45947, but that issue was never merged and closed as not reproducable without taking into account this linked issue.
I still experience this problem if the Folder permission is set to "Don't inherit" and you are not and admin but have all folder accesses then you will not see the "Open Blue Ocean" button.
| Resolution | Original: Duplicate [ 3 ] | |
| Status | Original: Closed [ 6 ] | New: Reopened [ 4 ] |
We can also reproduce this issue. Here are some additional information
Activating "Block inheritance of global authorization matrix" on a Github Organization or folder will make the "Open Blue Ocean" button disappear from the left menu, even if you give all possible permissions to your user, group, or even anonymous.