Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-48202

User able to create jobs via job DSL plugin on Jenkins top level

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Cannot Reproduce
    • Icon: Minor Minor
    • job-dsl-plugin
    • None

      If we define a Role-based matrix authorization strategy and a user that only have permission inside a folder (when this user logs, only see the content of the folder), if we create a job inside that folder with a postbuild step where:

      • Use the provided DSL script: 

      job('example-job'){
      steps{
      out.println('hello')
      }
      }

      * Context to use for relative job names: Jenkins root

       

      When the user executes the job it generate a job in the Jenkins root where it doesn't have permission (he is not able to see that generated job)

       

            daspilker Daniel Spilker
            jraezrus Javier Raez
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: