Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-47358

Copy Artifact plugin requires anonymous read access

XMLWordPrintable

      A top-level Jenkins job "A" is triggered by a user Bob. This job calls another job "B" which copies artifacts from a job "C", also triggered by "A". The user Bob has read access to all 3 jobs. Unless I give Anonymous Read access to Jenkins the build fails with:

      ERROR: Unable to find project for artifact copy: C
This may be due to incorrect project name or permission settings; see help for project name in job configuration.

      This seems like a major security flaw. I am required to have the Jenkins system locked down for security reasons. The plugin documentation is a little ambiguous as to whether this is absolutely required (the English is a little off). Is it possible to disable anonymous read access and still have this plugin working, preferably without messy hacks?

          [JENKINS-47358] Copy Artifact plugin requires anonymous read access

          Joe Harte created issue -
          Joe Harte made changes -
          Description Original: A top-level Jenkins job "A" is triggered by a user Bob. This job calls another job "B" which copies artifacts from a job "C", also triggered by "A". Unless I give Anonymous Read access to Jenkins the build fails with:

          {code}
          ERROR: Unable to find project for artifact copy: C
          This may be due to incorrect project name or permission settings; see help for project name in job configuration.
          {code}

          This seems like a major security flaw. I am required to have the Jenkins system locked down for security reasons. The plugin documentation is a little ambiguous as to whether this is absolutely required (the English is a little off). Is it possible to disable anonymous read access and still have this plugin working, preferably with messy hacks?           		New: A top-level Jenkins job "A" is triggered by a user Bob. This job calls another job "B" which copies artifacts from a job "C", also triggered by "A". The user Bob has read access to all 3 jobs. Unless I give Anonymous Read access to Jenkins the build fails with:

          {code}
          ERROR: Unable to find project for artifact copy: C
          This may be due to incorrect project name or permission settings; see help for project name in job configuration.
          {code}

          This seems like a major security flaw. I am required to have the Jenkins system locked down for security reasons. The plugin documentation is a little ambiguous as to whether this is absolutely required (the English is a little off). Is it possible to disable anonymous read access and still have this plugin working, preferably with messy hacks?
          Joe Harte made changes -
          Description Original: A top-level Jenkins job "A" is triggered by a user Bob. This job calls another job "B" which copies artifacts from a job "C", also triggered by "A". The user Bob has read access to all 3 jobs. Unless I give Anonymous Read access to Jenkins the build fails with:

          {code}
          ERROR: Unable to find project for artifact copy: C
          This may be due to incorrect project name or permission settings; see help for project name in job configuration.
          {code}

          This seems like a major security flaw. I am required to have the Jenkins system locked down for security reasons. The plugin documentation is a little ambiguous as to whether this is absolutely required (the English is a little off). Is it possible to disable anonymous read access and still have this plugin working, preferably with messy hacks?           		New: A top-level Jenkins job "A" is triggered by a user Bob. This job calls another job "B" which copies artifacts from a job "C", also triggered by "A". The user Bob has read access to all 3 jobs. Unless I give Anonymous Read access to Jenkins the build fails with:

          {code}
          ERROR: Unable to find project for artifact copy: C
          This may be due to incorrect project name or permission settings; see help for project name in job configuration.
          {code}

          This seems like a major security flaw. I am required to have the Jenkins system locked down for security reasons. The plugin documentation is a little ambiguous as to whether this is absolutely required (the English is a little off). Is it possible to disable anonymous read access and still have this plugin working, preferably without messy hacks?

          Joe Harte added a comment -

          mindless ikedam FYI

          Joe Harte added a comment - mindless ikedam FYI

          ikedam added a comment -

          https://wiki.jenkins.io/display/JENKINS/Copy+Artifact+Plugin#CopyArtifactPlugin-Permissionstocopyartifact

          ikedam added a comment - https://wiki.jenkins.io/display/JENKINS/Copy+Artifact+Plugin#CopyArtifactPlugin-Permissionstocopyartifact
          ikedam made changes -
          Assignee New: Joe Harte [ boon ]
          Resolution New: Not A Defect [ 7 ]
          Status Original: Open [ 1 ] New: Resolved [ 5 ]
          ikedam made changes -
          Status Original: Resolved [ 5 ] New: Closed [ 6 ]

            boon Joe Harte
            boon Joe Harte
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: